sPHPell spellcheckwindow.php SpellIncPath Variable Remote File Inclusion

2007-06-30T00:00:00
ID OSVDB:38966
Type osvdb
Reporter OSVDB
Modified 2007-06-30T00:00:00

Description

Manual Testing Notes

[target]/spellcheckwindow.php?SpellIncPath=5h3LL

References:

Related OSVDB ID: 38964 Related OSVDB ID: 38965 Related OSVDB ID: 38967 ISS X-Force ID: 35194 Generic Exploit URL: http://www.milw0rm.com/exploits/4132 FrSIRT Advisory: ADV-2007-2408 CVE-2007-3522 Bugtraq ID: 24727