PHP <= 4.3.9 & phpBB 2.x with unserialize() Remote Exploit (compiled)

No description provided by source...

Activity MOD Plus <= 1.1.0 (phpBB Mod) File Inclusion Vulnerability

No description provided by source. phpBB 2.x Activity MOD Plus File Inclusion Vulnerability Contacts ICQ: 10072 MSN/Mail: [email protected] web: www.nukedx.com This exploits works on phpBB 2.x Activity MOD Plus Original advisory can be found at: http://www.nukedx.com/?viewdoc=38 Succesful...

Blend Portal <= 1.2.0 (phpBB Mod) Remote File Inclusion Vulnerability

No description provided by source. Blend Portal = 1.2.0 for phpBB 2.x Remote File Inclusion Vulnerabilities Contacts ICQ: 10072 MSN/Mail: [email protected] web: www.nukedx.com This exploits works on Blend Portal = 1.2.0 for phpBB 2.x Original advisory can be found at:...

phpBB 2 Remote File Inclusion

================================================ Fully Modded phpBB 2 Remote File Include Exploit ================================================ +Title : Fully Modded phpBB 2 Remote File Include Exploit +Author : josalijoe +Contact : [email protected] +Download :...

CVE-2008-4125

The search function in phpBB 2.x provides a searchid value that leaks the state of PHP's PRNG, which allows remote attackers to obtain potentially sensitive information, as demonstrated by a cross-application attack against WordPress, a different vulnerability than CVE-2006-0632...

CVE-2008-4125

The CVE-2008-4125 entry fixes a PHP/phpBB 2.x issue where the search_id value leaks PHP’s PRNG state, enabling remote disclosure of potentially sensitive information. The vulnerability is demonstrated via a cross-application attack against WordPress; no explicit exploit details or remediation are...

Remote file inclusion

DISPUTED PHP remote file inclusion vulnerability in template.php in phpBB 2 allows remote attackers to execute arbitrary PHP code via a URL in the page parameter. NOTE: followup posts have disputed this issue, stating that template.php does not appear in phpBB and does not use a $page variable. I...

CVE-2006-2865

PHP remote file inclusion vulnerability in template.php in phpBB 2 allows remote attackers to execute arbitrary PHP code via a URL in the page parameter. NOTE: followup posts have disputed this issue, stating that template.php does not appear in phpBB and does not use a $page variable. It is...

CVE-2006-2865

The CVE-2006-2865 issue concerns phpBB 2 with a remote file inclusion in template.php via the page parameter, enabling an attacker to execute arbitrary PHP code. Concrete details from connected sources confirm the affected software (phpBB 2) and the vulnerable component (template.php) with the ro...

CVE-2006-2865

PHP remote file inclusion vulnerability in template.php in phpBB 2 allows remote attackers to execute arbitrary PHP code via a URL in the page parameter. NOTE: followup posts have disputed this issue, stating that template.php does not appear in phpBB and does not use a $page variable. It is...

Advisory: Blend Portal &lt;= 1.2.0 for phpBB 2.x &#40;blend_data/blend_common.php&#41; File Inclusion Vulnerability

--Security Report-- Advisory: Blend Portal = 1.2.0 for phpBB 2.x blenddata/blendcommon.php File Inclusion Vulnerability. --- Author: Mustafa Can Bjorn "nukedx a.k.a nuker" IPEKCI --- Date: 28/05/06 07:52 PM --- Contacts: ICQ: 10072 MSN/Email: [email protected] Web: http://www.nukedx.com --- Vendo...

Activity MOD Plus &lt;= 1.1.0 (phpBB Mod) File Inclusion Vulnerability

No description provided by source. phpBB 2.x Activity MOD Plus File Inclusion Vulnerability Contacts ICQ: 10072 MSN/Mail: [email protected] web: www.nukedx.com This exploits works on phpBB 2.x Activity MOD Plus Original advisory can be found at: http://www.nukedx.com/?viewdoc=38 Succesful...

Activity MOD Plus <= 1.1.0 (phpBB Mod) File Inclusion Vulnerability

Exploit for unknown platform in category web applications =================================================================== Activity MOD Plus http://victim/phpBB/language/langenglish/langactivity.php?phpbbrootpath=FILE EXAMPLE -...

CVE-2005-3536

SQL injection vulnerability in phpBB 2 before 2.0.18 allows remote attackers to execute arbitrary SQL commands via the topic type...

CVE-2005-3537

A "missing request validation" error in phpBB 2 before 2.0.18 allows remote attackers to edit private messages of other users, probably by modifying certain parameters or other inputs...

CVE-2005-3536

SQL injection vulnerability in phpBB 2 before 2.0.18 allows remote attackers to execute arbitrary SQL commands via the topic type...