OpenPinboard 2.0版本的index.php中存在PHP远程文件包含漏洞。远程攻击者可以借助语言参数中的一个URL,执行任意的PHP代码。
来源: BUGTRAQ
名称: 20070103 OpenPinboard <= Remote File Include
链接:http://www.securityfocus.com/archive/1/archive/1/455795/100/0/threaded
来源: BUGTRAQ
名称: 20070103 Re: OpenPinboard <= Remote File Include
链接:http://www.securityfocus.com/archive/1/455818/100/0/threaded
来源: OSVDB
名称: 33375
链接:http://osvdb.org/33375
来源: BUGTRAQ
名称: 20070106 Re: OpenPinboard <= Remote File Include
链接:http://archives.neohapsis.com/archives/bugtraq/2007-01/0176.html
暂无