FreeForum 0.9.0 <=- (index.php fpath) Remote File Include Vulnerability Jan 21 2007 01:18PM
me you (r 5 7 hotmail com) (1 replies)
Re: FreeForum 0.9.0 <=- (index.php fpath) Remote File Include Vulnerability Jan 24 2007 10:13AM
Stefano Zanero (s zanero securenetwork it)
> FreeForum 0.9.0 <=- (index.php fpath) Remote File Include Vulnerability

Bogus. You really don't know what you are doing, as others pointed out.

> code :
> include("$fpath/forum.php");

That variable is initialized two lines above, so this is BOGUS.

Stefano

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus