info
discussion
exploit
solution
references
Flyspray ADODBPath Remote File Include Vulnerability
An exploit is not required.
The following proof of concept exploits for Flyspray and EGS are available:
http://www.securityfocus.com/data/vulnerabilities/exploits/egs_10rc4_php5_incl_xpl.php
http://www.securityfocus.com/data/vulnerabilities/exploits/flyspray_097_php5_incl_xpl.php
Privacy Statement
Copyright 2010, SecurityFocus
