[VIM] BID 40546 vs 41073

George A. Theall theall at tenablesecurity.com
Wed Jun 23 13:55:01 CDT 2010


Can someone explain the differences between BID 40546 and 41073? The  
former covers a remote file include in phpBazar involving the 'cat'  
parameter of the 'picturelib.php' script; the latter covers a  
directory traversal vulnerability in the phpBazarPicLib plugin for  
phpBazar involving the 'cat' parameter. The earlier BID gives a PoC  
that's the same as Exploit DB 12855, but I don't see any source for  
the latter BID. They seem like the same issue, though.


George
-- 
theall at tenablesecurity.com





More information about the VIM mailing list