5 matches found
EUVD-2007-2657
Malware in sbrugna...
phpfp-rfi.txt
..:: PhpFirstPost blog Remote File Include Exploit ::.. / \|/// \ - - // @ @ ----oOOo---oOOo--------------------------------------------------- Y! Underground Group [email protected] Dj7xpl.2600.ir ----ooooO-----Ooooo-------------------------------------------------- \ / \ /...
CVE-2007-2665
PHP remote file inclusion vulnerability in block.php in PhpFirstPost 0.1 allows remote attackers to execute arbitrary PHP code via a URL in the Include parameter...
CVE-2007-2665
The CVE-2007-2665 issue is a PHP remote file inclusion vulnerability in PhpFirstPost 0.1, exploitable via the Include parameter in block.php to execute arbitrary PHP code. Affected component is PhpFirstPost’s block.php; root cause is improper handling of a user-supplied URL in Include, enabling r...
PHPFirstPost Block.PHP远程文件包含漏洞
PHPFirstPost是一款基于PHP的WEB应用程序。 PHPFirstPost不正确过滤用户提交的输入,远程攻击者可以利用漏洞以WEB权限执行任意命令。 问题是'Block.PHP'脚本对用户提交的'Include'参数缺少过滤,指定远程服务器上的文件作为包含参数,可导致以WEB权限执行任意命令。 PhpFirstPost 0.1 http://sourceforge.net/projects/phpfirstpost/ html head title..:: PhpFirstPost blog Remote File Include Exploit ::../title scri...