PcP-Guestbook gb.php lang Variable Traversal Local File Inclusion

2007-04-08T00:00:00
ID OSVDB:38460
Type osvdb
Reporter OSVDB
Modified 2007-04-08T00:00:00

Description

Manual Testing Notes

http://[Target]/[Path]/gb.php?lang=[File-To-Require]%00

References:

Related OSVDB ID: 38459 Related OSVDB ID: 38461 Keyword: PcP-Book ISS X-Force ID: 33491 Generic Exploit URL: http://www.milw0rm.com/exploits/3689 CVE-2007-1933