4 matches found
phpBB News Defilante Horizontale <= 4.1.1 - Remote Include Exploit
No description provided by source...
phpBB News Defilante Horizontale模块phpbb_root_path参数远程文件包含漏洞
News Defilante Horizontale是phpBB中所使用的一个模块。 News Defilante Horizontale模块在处理用户请求时存在输入验证漏洞,远程攻击者可能通过利用此漏洞在服务器上以Web进程权限执行任意指令。 phpBB的includes/functionsnewshr.php文件没有正确的验证对phpbbrootpath参数的输入,允许攻击者通过包含本地或外部资源的文件导致执行任意PHP代码。成功攻击要求打开了registerglobals。 phpBB Group News Defilante Horizontale FR = 4.1.1...
CVE-2006-5415
PHP remote file inclusion vulnerability in includes/functionsnewshr.php in the News Defilante Horizontale 4.1.1 and earlier module for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter...
phpBB News Defilante Horizontale <= 4.1.1 Remote Include Exploit
No description provided by source. !/usr/bin/perl news defilante horizontale FR Class: Remote File Include Vulnerability Patch: unavailable Date: 2006/10/12 Remote: Yes Type: high...