PHP DB Designer db/session.php _SESSION[DRIVER] Variable Remote File Inclusion

2007-03-16T00:00:00
ID OSVDB:37212
Type osvdb
Reporter OSVDB
Modified 2007-03-16T00:00:00

Description

Manual Testing Notes

[Path]/db/session.php?_SESSION[DRIVER]=Shell

References:

Related OSVDB ID: 37210 Related OSVDB ID: 37211 ISS X-Force ID: 33033 Generic Exploit URL: http://www.milw0rm.com/exploits/3501 FrSIRT Advisory: ADV-2007-1007 CVE-2007-1620