SAMATE Logo NIST Logo The SAMATE Project Department of Homeland Security
Downloads:  Download this Test Case #1951

Back to the previous page... Back to the previous page

Test Case IDCandidate1951
Bad / Good / MixedBadBad test case
Author
Associations
Test suite: 31  
Added byRomain Gaucher
LanguagePHP
Type of test caseSource Code
Input string
Expected Output
Instructions
Submission date2007-03-13
DescriptionThe test case shows a PHP Include VUlnerability. The defense mechanism protect from Remote File Inclusion with the Apache DOCUMENT_ROOT check and also the directory traversal with the regular expression.
File(s)
Flaw

There are no comments
Have any comments on this test case? Please, .


					
				
File Contains:
CWE-098: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') on line(s): 30