CVE-2006-6883

PHPIrc bot 0.2 is affected by a remote file inclusion in php4you.php, exploitable via a URL in the dir parameter to cause arbitrary PHP code execution. The issue is documented in PT-Security PT-2006-7480 with recommendations to validate/sanitize the dir parameter and, as a temporary workaround, r...

PHPIrc_bot <= Remote File Include

====================================================================================== PHPIrcbot = Remote File Include ====================================================================================== Scripts: PHPIrcbot Bug in : php4you.php Version : 0.2 code : ;includeonce $dir . $file...

phpircbot-rfi.txt

====================================================================================== PHPIrcbot iam freeeee Greetz to : abushahad | R00T-shilL | v1per-haCker| alkasergolden | abunawaf | mr-wolf | al-muhajer22 | cold zero | bensliman| And All Members In Tryag...

CVE-2006-6883

PHP remote file inclusion vulnerability in php4you.php in PHPIrcbot 0.2 allows remote attackers to execute arbitrary PHP code via a URL in the dir parameter. NOTE: this issue is disputed by CVE, since the dir variable is declared before being used...