KGB Kgcall.php Local File Include Vulnerability

KGB is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input.

A remote attacker can exploit this vulnerability by uploading a malicious file and executing it in the context of the vulnerable application. Other attacks may also be possible.

This issue affects version 1.8; other versions may also be vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus