PHP remote file inclusion vulnerability in form.inc.php3 in MyGuestbook 0.6.1 allows remote attackers to execute arbitrary PHP code via the lang parameter.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Myguestbook | Levcgi.com | 0.6.1 (including) | 0.6.1 (including) |
References
- http://marc.info/?l=bugtraq\u0026m=112059876828730\u0026w=2
- http://secunia.com/advisories/15927
- http://securitytracker.com/id?1014387
- http://www.soulblack.com.ar/repo/papers/advisory/myguestbook_advisory.txt
- http://marc.info/?l=bugtraq\u0026m=112059876828730\u0026w=2
- http://secunia.com/advisories/15927
- http://securitytracker.com/id?1014387
- http://www.soulblack.com.ar/repo/papers/advisory/myguestbook_advisory.txt