CVE-2001-1049

CVE-2001-1049

EPSS 1.6%

Phorecast PHP script before 0.40 allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://archives.neohapsis.com/archives/bugtraq/2001-10/0012.html http://phorecast.org/http://www.iss.net/security_center/static/7215.php http://www.securityfocus.com/bid/3388