[VIM] BID 40546 vs 41073
George A. Theall
theall at tenablesecurity.com
Wed Jun 23 13:55:01 CDT 2010
Can someone explain the differences between BID 40546 and 41073? The
former covers a remote file include in phpBazar involving the 'cat'
parameter of the 'picturelib.php' script; the latter covers a
directory traversal vulnerability in the phpBazarPicLib plugin for
phpBazar involving the 'cat' parameter. The earlier BID gives a PoC
that's the same as Exploit DB 12855, but I don't see any source for
the latter BID. They seem like the same issue, though.
George
--
theall at tenablesecurity.com
More information about the VIM
mailing list