IDMOS 'site_absolute_path' Parameter Multiple Remote File Include Vulnerabilities

info
discussion
exploit
solution
references

IDMOS 'site_absolute_path' Parameter Multiple Remote File Include Vulnerabilities

IDMOS is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data.

Exploiting these issues can allow an attacker to compromise the application and the underlying system; other attacks are also possible.

IDMOS 1.0 is vulnerable; other versions may also be affected.