MDForum error.php PNSVlang Cookie Traversal Local File Inclusion

2006-12-31T17:29:50
ID OSVDB:37509
Type osvdb
Reporter OSVDB
Modified 2006-12-31T17:29:50

Description

Technical Description

This vulnerability is only present when the magic_quotes_gpc PHP option is 'off' and the register_globals PHP option is 'on' (not the default setting for PHP since version 4.2.0 / 22-Apr-2002).

References:

ISS X-Force ID: 31215 Generic Exploit URL: http://milw0rm.com/exploits/3057 FrSIRT Advisory: ADV-2007-0017 CVE-2006-6869 Bugtraq ID: 21837