CVE-1999-0068
PHP - Unauthenticated Arbitrary File Read via CGI mylog Script
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-1999-0068. PoCs published by Bryan Berg.
AI-analyzed exploit summary This is a writeup describing a local file inclusion vulnerability in PHP/FI due to unsanitized user input in example scripts (mlog.html and mylog.html). The vulnerability allows an attacker to read arbitrary files on the system by manipulating the 'screen' parameter.
Description
CGI PHP mylog script allows an attacker to read any file on the target server.
Exploits (1)
This is a writeup describing a local file inclusion vulnerability in PHP/FI due to unsanitized user input in example scripts (mlog.html and mylog.html). The vulnerability allows an attacker to read arbitrary files on the system by manipulating the 'screen' parameter.