[VIM] [false] Remote File Include In Script PHP Photo Album

Steven M. Christey coley at mitre.org
Wed Mar 14 17:04:08 UTC 2007


Researcher: Hasadya Raed

Ref: BUGTRAQ:20070311 Remote File Include In Script PHP Photo Album
     http://www.securityfocus.com/archive/1/archive/1/462559/100/0/threaded

from versions 0.3.2.6 (http://www.phpalbum.net/dw) and Beta
0.4.1-beta9 and beta8 (http://www.phpalbum.net/), we have:

1) NO file named common.php

2) NO string "db_file" in any file


- Steve


More information about the VIM mailing list