CVE-2001-1049

CVE-2001-1049

EPSS 1.6%

Phorecast PHP script before 0.40 allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://archives.neohapsis.com/archives/bugtraq/2001-10/0012.html http://phorecast.org/http://www.iss.net/security_center/static/7215.php http://www.securityfocus.com/bid/3388