5 lines
No EOL
343 B
Text
5 lines
No EOL
343 B
Text
source: http://www.securityfocus.com/bid/9018/info
|
|
|
|
PHP-Coolfile allows unauthorized administrative access due to an error in the way access is evaluated in the action.php file. This could allow a remote user to obtain the administrative username and password for the site.
|
|
|
|
www.site.com/php-coolfile/action.php?action=edit&file=config.php |