phpBB 2.0.3 Script Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6248/info phpBB does not properly sanitize user input in forum postings. This could allow a malicious user to inject script code into a forum post which would in turn be executed when the page is viewed by other users...

phpBB <= 2.0.15 Register Multiple Users Denial of Service (c code)

No description provided by source...

phpBB 3.0.8 - Remote Denial of Service

phpBB 3.0.8 - Remote Denial of Service source: https://www.securityfocus.com/bid/65481/info phpBB is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to crash the affected application, denying service to legitimate users. Phpbb Forum Denial of Service...

phpbb 1.2.4RC3 download.php 远程文件包含漏洞

No description provided by source...

phpbb 2.0.21 跨站脚本漏洞

No description provided by source...

phpbb 2.0.53 kb.php Sql注入漏洞

No description provided by source...

phpbb 2.0.9 代码执行漏洞

No description provided by source...

CVE-2008-6506

Unspecified vulnerability in phpBB before 3.0.4 allows attackers to bypass intended access restrictions and activate de-activated accounts via unknown vectors...

phpBB < 3.0.1 Multiple Information Disclosure Vulnerabilities

Binary data 4475.prm...

PT-2006-6318 · Phpbb · Phpbb

Name of the Vulnerable Software and Affected Versions: phpBB versions prior to the version that fixes the issue in Fully Modded phpBB phpbbfm 2021.4.40 Description: The issue allows remote attackers to execute arbitrary PHP code via a URL in the phpbb root path parameter. This is a result of a PH...

Dimension of phpBB 0.2.6 - &#039;phpbb_root_path&#039; Remote File Inclusions

/ \ \ \ ,, / / '-./.-' .--' '--. / / /""\ \ \ SpiderZ Hacking Security | | | | \ \ / / '..' Author: SpiderZ Dimension of phpBB Remote File Inclusion Vulnerability For: Dimension of phpBB 0.2.5 phpBB 2.0.21 Site: www.spiderz.altervista.org Site02: www.spiderz.netsons.org Remote File Inclusion...

phpBB &quot;charts.php&quot; XSS and SQL-Injection

// phpBB "charts.php" hack XSS and SQL-Injection // ----------------------------------------------------------------- Advisory by: LoK-Crew - Exploit: http://www.example.com/charts.php?action=vote&rate=1&id=XSS http://www.example.com/charts.php?action=vote&rate=1&id=SQL - Googledork:...

TopList 1.3.8 - phpBB Hack Remote File Inclusion (2)

TopList 1.3.8 - phpBB Hack Remote File Inclusion 2 TopList Hack for PHPBB "$hostname", LocalPort = '9999', Proto = 'tcp', Listen = 1, Reuse = 1, ; die "Could not create socket: $!\n" unless $sock; if my $pid = fork my $newsock = $sock-accept; my $request = ; print $newsock "HTTP/1.1 200 OK\n";...

CVE-2006-1895

The provided data confirms CVE-2006-1895 affecting phpBB: a direct static code injection in includes/template.php allows remote authenticated users with write access to execute arbitrary PHP by modifying templates. The root causes are (1) bypassing a loose regex intended to match BEGIN/END in ove...

phpBB <= 2.0.19 XSS Remote Cookie Disclosure Exploit

Exploit for unknown platform in category web applications ==================================================== phpBB tag means that the cursor must pass it in the y direction only. e.g. the mouse only needs to cross a point horrizontaly equal to the link in order for the javascript to be executed...

[SA18252] phpBB &quot;url&quot; bbcode Script Insertion Vulnerability

TITLE: phpBB "url" bbcode Script Insertion Vulnerability SECUNIA ADVISORY ID: SA18252 VERIFY ADVISORY: http://secunia.com/advisories/18252/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: phpBB 2.x http://secunia.com/product/463/ DESCRIPTION: A vulnerabilit...

phpBB 2.0.15 - PHP Remote Code Execution (Metasploit)

Title: phpBB 2.0.15 arbitrary command execution eXploit Name: phpphpbb2015.pm License: Artistic/BSD/GPL Info: Coded because of boredom. - This is an exploit module for the Metasploit Framework, please see http://metasploit.com/projects/Framework for more information. package...

phpBB <= 2.0.16 XSS Remote Cookie Disclosure Exploit

Exploit for unknown platform in category web applications ==================================================== phpBB = 2.0.16 XSS Remote Cookie Disclosure Exploit ==================================================== / Post the below code into a new message. Example Output: ... - -...

phpBB Notes Module - SQL Injection

phpBB Notes Module - SQL Injection source: https://www.securityfocus.com/bid/13417/info The notes module for phpBB is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...

phpbb2013SQL.txt

heres a update of the paper: phpBB 2.0.13 = downloads.php Mod SQL injection www.batznet.com Discussion: -------------------- This exploit makes it possible to insert SQL Code through downloads.php Bug: -------------------- http://www.phpbb.de/downloads.php?cat=batz Spits out an error msg: Could n...