Intrusion Prevention

PHP.Greetz.Remote.File.Inclusion

Description

It indicates an attacker attempted a PHP Injection attack against PHPGreetz. PHPGreetz is vulnerable to a PHP Injection Attack. The "content.php" script does not sufficiently sanitize user-supplied input in the "content" parameter. This could allow an attacker to execute arbitrary PHP commands against the system.

Affected Products

phpGreetz phpGreetz 0.99

Impact

Compromise of the affected system.

Recommended Actions

Apply appropriate patch from the vendor or Upgrade to non-vulnerable version if available.