Short Name |
HTTP:PHP:PHPROJEKT-INC |
---|---|
Severity |
Minor |
Recommended |
No |
Category |
HTTP |
Keywords |
PHProjekt "path_pre" Parameter Remote File Include |
Release Date |
2005/01/10 |
Update Number |
1213 |
Supported Platforms |
di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a vulnerability in the authform.inc.php script included in the PHProjekt package. Attackers can supply a remote location in the "path_pre" input parameter to force the target to download and execute arbitrary PHP code from the remote location.
Remote attackers could exploit this vulnerability to execute arbitrary code on an affected machine.