Bugtraq mailing list archives
Re: FreeForum 0.9.0 <=- (index.php fpath) Remote File Include Vulnerability
From: Stefano Zanero <s.zanero () securenetwork it>
Date: Wed, 24 Jan 2007 11:13:37 +0100
FreeForum 0.9.0 <=- (index.php fpath) Remote File Include Vulnerability
Bogus. You really don't know what you are doing, as others pointed out.
code :
include("$fpath/forum.php");
That variable is initialized two lines above, so this is BOGUS. Stefano
Current thread:
- FreeForum 0.9.0 <=- (index.php fpath) Remote File Include Vulnerability me you (Jan 22)
- Re: FreeForum 0.9.0 <=- (index.php fpath) Remote File Include Vulnerability Stefano Zanero (Jan 24)