119 matches found
Debian DSA-925-1 : phpbb2 - several vulnerabilities
Several vulnerabilities have been discovered in phpBB, a fully featured and skinnable flat webforum. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2005-3310 Multiple interpretation errors allow remote authenticated users to inject arbitrary web script...
phpBB Import Tools Mod <= 0.1.4 Remote File Include Vulnerability
Exploit for unknown platform in category web applications ================================================================= phpBB Import Tools Mod = 0.1.4 Remote File Include Vulnerability ================================================================= Title: phpBB Import Tools Mod = 0.1.4...
PNphpBB2 <= 1.2g (phpbb_root_path) Remote File Include Vulnerability
No description provided by source. Yeah, another ZeroDay Smile Vendor: http://www.pnphpbb.com/ Vulnerable File: includes/functionsadmin.php Vulnerable Code: //The phpbbrootpath isn't initialize includeonce $phpbbrootpath . 'includes/functions.' . $phpEx ; Method To Use:...
phpBB2 (template.php) Remote File Inclusion
Title: phpBB2 Remote File Include Credit: Canberx Thanx: Forewer-Partizan Mail: [email protected] www.canberx.tk Google Dork: Powered by phpBB © 2001, 2002 phpBB Group Exploit: www.target.com/pathtophpbb/template.php?page=attacker Plz Don't Hacked site if it already has been defaced :...
phpbb2include.txt
Title: phpBB2 Remote File Include Credit: Canberx Thanx: Forewer-Partizan Mail: [email protected] www.canberx.tk Google Dork: Powered by phpBB © 2001, 2002 phpBB Group Exploit: www.target.com/pathtophpbb/template.php?page=attacker Plz Don't Hacked site if it already has been defaced :...
[SECURITY] [DSA 1066-1] New phpbb2 packages fix execution of arbitrary web script code
-------------------------------------------------------------------------- Debian Security Advisory DSA 1066-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff May 20th, 2006 http://www.debian.org/security/faq -...
DSA-1066-1 phpbb2 - missing input sanitising
Bulletin has no description...
Knowledge Base Mod 2.0.2 - phpBB Remote File Inclusion
Knowledge Base Mod 2.0.2 - phpBB Remote File Inclusion Title: Knowledge Base Mod for PHPbb = 2.0.2 remote file inclusion URL: http://www.phpbb2.de/dload.php?action=file&fileid=538 Dork: "Powered by Knowledge Base" Credits: Oo Exploit:...
CVE-2005-3423
Multiple SQL injection vulnerabilities in Subdreamer 2.2.1 allow remote attackers to execute arbitrary SQL commands via 1 the loginusername parameter or 2 cookies to a subdreamer.php, b ipb2.php, c phpbb2.php, d vbulletin2.php, and e vbulletin3.php...
Subdreamer 2.2.1 - SQL Injection Command Execution
Subdreamer 2.2.1 - SQL Injection Command Execution !/usr/bin/perl Subdreamer 2.2.1 command exec exploit @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ supported targets: without forum integration with phpBB2 integration with ipb2 integration with vbulletin2...
Subdreamer 2.2.1 SQL Injection / Command Execution Exploit
Exploit for unknown platform in category web applications ========================================================== Subdreamer 2.2.1 SQL Injection / Command Execution Exploit ========================================================== !/usr/bin/perl Subdreamer 2.2.1 command exec exploit...
Subdreamer 2.2.1 - SQL Injection / Command Execution
!/usr/bin/perl Subdreamer 2.2.1 command exec exploit @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ supported targets: without forum integration with phpBB2 integration with ipb2 integration with vbulletin2 integration...
Subdreamer 2.2.1 SQL Injection / Command Execution Exploit
No description provided by source. !/usr/bin/perl Subdreamer 2.2.1 command exec exploit @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ supported targets: without forum integration with phpBB2 integration with ipb2 integration with vbulletin2 integration...
Debian DSA-768-1 : phpbb2 - missing input validation
A cross-site scripting vulnerability has been detected in phpBB2, a fully featured and skinnable flat webforum software, that allows remote attackers to inject arbitrary web script or HTML via nested tags. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package check...
[SECURITY] [DSA 768-1] New phpbb2 packages fix cross-site scripting
-------------------------------------------------------------------------- Debian Security Advisory DSA 768-1 [email protected] http://www.debian.org/security/ Martin Schulze July 27th, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 768-1] New phpbb2 packages fix cross-site scripting
-------------------------------------------------------------------------- Debian Security Advisory DSA 768-1 [email protected] http://www.debian.org/security/ Martin Schulze July 27th, 2005 http://www.debian.org/security/faq -...
DSA-768-1 phpbb2 - missing input validation
Bulletin has no description...
phpBB2 Plus <= 1.52 Multiple XSS
The remote host is running a version of phpBB2 Plus that suffers from multiple cross-site scripting flaws due to a general failure of the application and associated modules to sanitize user-supplied input. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...
PHPBB2 < 2.0.14 Multiple Vulnerabilities
Binary data 2820.prm...
PHPBB2 Plus 1.5 - 'Portal.php' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/13151/info phpBB2 Plus is affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute...