[] NeoSense
E X P L O I T S
title author type platform port cve id

PHP-Proxima - 'autohtml.php' Information Disclosure

Author: Mind Warper
type: webapps
platform: php
port: 
date_added: 2003-05-14 
date_updated: 2012-11-10 
verified: 1 
codes:  
tags: 
aliases:  
screenshot_url:  
application_url: 
source: https://www.securityfocus.com/bid/7598/info

A vulnerability has been reported for PHP-Proxima. The problem occurs in the autohtml.php script. Specifically, the script fails to verify the contents of a user-supplied variable before including a specified file into an HTML file. As a result, a malicious remote user may be capable of using this as a channel to disclose the contents of arbitrary local system files.

It should be noted that all local files would be accessed with the privileges of user invoking PHP-Proxima.

http://www.target.org/autohtml.php?op=modload&mainfile=x&name=filename
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.