YAAP includes/common.php root_path Variable Remote File Inclusion

2007-05-12T10:48:46
ID OSVDB:36060
Type osvdb
Reporter OSVDB
Modified 2007-05-12T10:48:46

Description

Technical Description

This vulnerability is only present when the register_globals PHP option is set to 'on'. This has not been the default setting for PHP installs since version 4.2.0 (22-Apr-2002).

Manual Testing Notes

http://[target]/[path]/includes/common.php?root_path=ShellCode

References:

Secunia Advisory ID:25254 ISS X-Force ID: 34264 Generic Exploit URL: http://www.milw0rm.com/exploits/3908 FrSIRT Advisory: ADV-2007-1797 CVE-2007-2664