phpFidoNode phfito SRC_PATH Parameter Remote File Include Vulnerability

An attacker can exploit these issues via a browser.

The following proof-of-concept URI is available:

http://www.example.com/phfito/phfito-post?SRC_PATH=[ Evil Code ]


 

Privacy Statement
Copyright 2010, SecurityFocus