Bugtraq mailing list archives
Remote File Inclusion in ViperWeb
From: asamad () arpatech com
Date: 15 Mar 2007 12:07:10 -0000
PHP remote file inclusion vulnerabilities in ViperWeb Portal allow remote attackers to execute arbitrary PHP code via a URL in the $modpath variable. http://<Target_Web>/index.php?modpath=<Evil_Script> Found in: line32. Code: include($modpath); Vulnerability found by Abdus Samad Advanced Research Project and Technologies.
Current thread:
- Remote File Inclusion in ViperWeb asamad (Mar 15)