mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
882 B
882 B
CVE-2006-6285
Description
** DISPUTED ** PHP remote file inclusion vulnerability in index.php in Kai Blankenhorn Bitfolge simple and nice index file (aka snif) 1.5.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the externalConfig parameter. NOTE: CVE and other third parties dispute this vulnerability because $externalConfig is defined before use.
POC
Reference
- http://attrition.org/pipermail/vim/2006-December/001159.html
- https://www.exploit-db.com/exploits/2868
Github
No PoCs found on GitHub currently.