5 matches found
CVE-2008-4735
PHP remote file inclusion vulnerability in header.php in Concord Asset, Software, and Ticket system CoAST 0.95 allows remote attackers to execute arbitrary PHP code via a URL in the sectionsfile parameter...
CVE-2008-4735
Concord Asset, Software, and Ticket system (CoAST) 0.95 is affected. The vulnerability is a PHP remote file inclusion in header.php, exploitable via the sections_file parameter, enabling remote code execution by supplying a URL. Root cause: unvalidated sections_file leads to PHP code execution. I...
CVE-2008-4735
PHP remote file inclusion vulnerability in header.php in Concord Asset, Software, and Ticket system CoAST 0.95 allows remote attackers to execute arbitrary PHP code via a URL in the sectionsfile parameter...
coast-rfi.txt
Author : By DaRkLiFe Greetz : str0ke & S.VV.A.T. Script : The Concord Asset, Software, and Ticket systemCoAST 0.95 Remote File Inclusion Vulnerability Download :http://downloads.sourceforge.net/coastal/coast-0.95.tgz?modtime=1222363198&bigmirror=0 Exploit :...
CoAST 0.95 - sections_file Remote File Inclusion
CoAST 0.95 - sectionsfile Remote File Inclusion Author : By DaRkLiFe Greetz : str0ke & S.VV.A.T. Script : The Concord Asset, Software, and Ticket systemCoAST 0.95 Remote File Inclusion Vulnerability Download :http://downloads.sourceforge.net/coastal/coast-0.95.tgz?modtime=1222363198&bigmirror=0...