lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
From: elvi52001 at yahoo.com (ElviS .de) Subject: A phpBB hacker tool called "nigga". http://www.k-otik.com/exploits/20050314.phpbbexp.cpp.php Feher Tamas <etomcat@...email.hu> wrote:Hello, Have you heard of a tool named "nigga" which hacks phpBB forums? What effects does it have on the compromised system? is it a serious break-in or just an automated something? http://url.was.here/forum/viewtopic.php?t=number_was_here phpBB : Critical Error Could not open aaa=12;eval(stripslashes($_REQUEST[nigga])); exit();// /../../../../../../../../../../../../../../../../../../../tmp template config file Thanks in advance, Sincerely: Tamas Feher. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://www.secunia.com/ __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20050317/fe7911fe/attachment.html