Network Security News – Sunday, October 09, 2005 Events
Avi Alkalay contribute.cgi/contribute.pl contribdir Variable Arbitrary File Overwrite
Celular contribute.cgi or contribute.pl scripts contains a flaw that allows a remote attacker to overwrite arbitrary files. The issue is due to the contribute.pl or contribute.cgi script not properly sanitizing user input, specifically values supplied via the contribdir variable.. Read more at osvdb.org/19879
Leave a Reply