[VIM] Sitellite CMS <= 4.2.12 (559668.php) Remote File Inclusion Vulnerability

George A. Theall theall at tenablesecurity.com
Thu Jun 14 14:50:58 UTC 2007


FYI: milw0rm 4071 is sort of true -- the RFI flaw does exist, but by 
default there's a .htaccess file in saf/lib/PEAR/PhpDocumentor that 
prevents access to that directory tree.

George
-- 
theall at tenablesecurity.com


More information about the VIM mailing list