• info
• discussion
• exploit
• solution
• references

RETIRED: Content Management System module for PHProjekt 'path_pre' Remote File Include Vulnerability

Attackers can exploit this issue through a browser.

The following example URI is available:

http://www.example.com/cm/cm_navigation.inc.php?path_pre=[SHELLCODE]