- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 38938
- Проверка EDB
-
- Пройдено
- Автор
- TUNISIAN CYBER
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- null
- Дата публикации
- 2013-12-24
xBoard 5.0/5.5/6.0 - 'view.php' Local File Inclusion
Код:
source: https://www.securityfocus.com/bid/64619/info
xBoard is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input.
An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts. This could allow the attacker to compromise the application and the computer; other attacks are also possible.
xBoard 5.0, 5.5, and 6.0 are vulnerable.
http://www.example.com/xboard/view.php?post=[LFI]- Источник
- www.exploit-db.com
