PHP.pSlash.lvcIncludeDir.Code.Execution
Description
It indicates a possible exploit of a Remote Arbitrary Code Execution Vulnerability in pSlash PHP script, that may allow remote attackers to execute arbitrary code by including files from remote web sites, using an HTTP request that modifies the includedir variable. pSlash is freely available, open-source web portal software. It allows users to create their own websites based on a template.
Affected Products
Derek Leung pSlash 0.70
Impact
Compromise of the affected system.
Recommended Actions
Apply appropriate patch from the vendor.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |