11 lines
No EOL
524 B
Text
11 lines
No EOL
524 B
Text
source: https://www.securityfocus.com/bid/18967/info
|
|
|
|
Forum 5 is prone to a local file-include vulnerability.
|
|
|
|
The application fails to sanitize user input when executing the script. In particular the script fails to check for the presence of a directory-traversal sequence ('../').
|
|
|
|
A successful exploit may allow unauthorized users to view files and to execute local scripts; other attacks are also possible.
|
|
|
|
There is no specific affected version information available.
|
|
|
|
http://www.example.com/fm.php?GLOBAL[template]=LFI |