PHP remote file inclusion vulnerability in forgot_pass.php in Free File Hosting 1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the AD_BODY_TEMP parameter. NOTE: this issue was later reported for the "File Upload System" which is a component of Free File Hosting. This also affects Free Image Hosting 2.0, which contains the same code.
The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.
| Link | Tags |
|---|---|
| http://www.rahim.webd.pl/exploity/Exploits/111.txt | exploit |
| http://www.attrition.org/pipermail/vim/2007-March/001473.html | mailing list |
| http://secunia.com/advisories/22594 | third party advisory vendor advisory |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/33196 | vdb entry |
| http://www.securityfocus.com/bid/23118 | vdb entry |
| https://www.exploit-db.com/exploits/3568 | exploit |
| https://www.exploit-db.com/exploits/2670 | exploit |
| http://www.vupen.com/english/advisories/2006/4228 | vdb entry vendor advisory |
| http://www.securityfocus.com/archive/1/463707/100/0/threaded | mailing list |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/29874 | vdb entry |
| http://www.osvdb.org/30143 | vdb entry |
| http://www.securityfocus.com/bid/20781 | vdb entry exploit |