Arbitrary File Inclusion Vulnerability in More.groupware PHP Script

CVE-2001-1296 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

More.groupware PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.

Learn more about our Web App Pen Testing.