phpBB 2.0.13 (admin_styles.php) Remote Command Execution Exploit

Exploit for linux platform in category remote exploits ================================================================ phpBB 2.0.13 adminstyles.php Remote Command Execution Exploit ================================================================ !/usr/bin/perl r57phpbbadmin2exec.pl phpBB...

phpBB 2.0.13 - 'admin_styles.php' Remote Command Execution

!/usr/bin/perl r57phpbbadmin2exec.pl phpBB adminstyles.php commands execution exploit tested on phpBB 2.0.13 by 1dt.w0lf RST/GHC http://rst.void.ru http://ghc.ru screen r57phpbbadmin2exec.pl -p http://blah.com/phpBB/admin/ -s 0864cb0abb396319c589ebc2a98c2c5d -c getprefix...

phpBB 2.0.13 (admin_styles.php) Remote Command Execution Exploit

No description provided by source. !/usr/bin/perl r57phpbbadmin2exec.pl phpBB adminstyles.php commands execution exploit tested on phpBB 2.0.13 by 1dt.w0lf RST/GHC http://rst.void.ru http://ghc.ru screen r57phpbbadmin2exec.pl -p http://blah.com/phpBB/admin/ -s 0864cb0abb396319c589ebc2a98c2c5d -c...

phpBB 2.0.17 remote avatar size bug

Title: phpBB remote avatar size bug Software: phpBB 2.0.17 and maybe prior versions Discovered by: David Sopas Ferreira david at systemsecure dot org Original link: http://www.systemsecure.org/ssforum/viewtopic.php?t=272 » Email from phpBB « Your report "Avatar size" has been closed because your...

multiVulns.txt

Multi-CMS/Forum Vulnability's Found by ap0c hackers pacifico & ratboy Yo! Ok, well a couple new vulnabilitys have been found by.. us : ------------------ First; e107 xss--- ------------------ link=http://w000000w00tw00t/asdadLIlink= onMouseOver='alertdocument.cookie;'...

Multiple CMS/Forum Vulnablilties

Multi-CMS/Forum Vulnability's Found by ap0c hackers pacifico & ratboy Yo! Ok, well a couple new vulnabilitys have been found by.. us : ------------------ First; e107 xss--- ------------------ link=http://w000000w00tw00t/asdadLIlink= onMouseOver='alertdocument.cookie;' h1d3="size=24HIGHLIGHT...

bbcodeLogout.txt

Hi, Saw this one on www.waraxe.us Discovered by Easyex and i was thinking if there are some more possibilities using the method described. The POC below is for phpBB. - ========== make yourself a folder on your host rename the folder to signature.jpg this will trick bbcode that its an image file...

[Full-disclosure] BBCode [IMG] [/IMG ] Tag Vulnerability

Hi, Saw this one on www.waraxe.us Discovered by Easyex and i was thinking if there are some more possibilities using the method described. The POC below is for phpBB. - ========== make yourself a folder on your host rename the folder to signature.jpg this will trick bbcode that its an image file...

CVE-2004-2350

The CVE-2004-2350 entry pertains to an SQL injection in phpBB’s search.php affecting phpBB 1.0 through 2.0.6 via the search_results parameter. The underlying vulnerability allows remote attackers to execute arbitrary SQL and potentially gain privileges, as described in the fixed-text CVE descript...

CVE-2004-2350

SQL injection vulnerability in search.php for phpBB 1.0 through 2.0.6 allows remote attackers to execute arbitrary SQL and gain privileges via the searchresults parameter...

CVE-2004-2358

CVE-2004-2358 describes a cross-site scripting (XSS) vulnerability in the phpBB 2.0.6c admin_words.php script, allowing remote attackers to inject arbitrary web script or HTML via the id parameter. The vulnerability details indicate the affected component is phpBB’s admin_words.php and the flaw a...

CVE-2004-2358

Cross-site scripting XSS vulnerability in adminwords.php for phpBB 2.0.6c allows remote attackers to inject arbitrary web script or HTML via the id parameter...

phpBB < 2.0.20 Multiple Vulnerabilities

Binary data 3163.prm...

[SA16149] phpBB BBcode &quot;url&quot; Script Insertion Vulnerability

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

phpBB 2.0.17 released

Hi everyone, phpBB Group announces the release of phpBB 2.0.17, the "no, we did not forget naming it last time" release. This release addresses several bugfixes and some low security issues as well as the recently seemingly wide-spread XSS issue only affecting Internet Explorer. Please have a loo...

phpBB 2.0.15 Remote PHP Code Execution Exploit (metasploit)

Exploit for unknown platform in category web applications =========================================================== phpBB 2.0.15 Remote PHP Code Execution Exploit metasploit =========================================================== Title: phpBB 2.0.15 arbitrary command execution eXploit Name:...

phpBB 2.0.15 - PHP Remote Code Execution (Metasploit)

phpBB 2.0.15 - PHP Remote Code Execution Metasploit Title: phpBB 2.0.15 arbitrary command execution eXploit Name: phpphpbb2015.pm License: Artistic/BSD/GPL Info: Coded because of boredom. - This is an exploit module for the Metasploit Framework, please see http://metasploit.com/projects/Framework...

phpBB 2.0.15 - PHP Remote Code Execution (Metasploit)

Title: phpBB 2.0.15 arbitrary command execution eXploit Name: phpphpbb2015.pm License: Artistic/BSD/GPL Info: Coded because of boredom. - This is an exploit module for the Metasploit Framework, please see http://metasploit.com/projects/Framework for more information. package...

phpBB 2.0.15 Remote PHP Code Execution Exploit (metasploit)

No description provided by source. Title: phpBB 2.0.15 arbitrary command execution eXploit Name: phpphpbb2015.pm License: Artistic/BSD/GPL Info: Coded because of boredom. - This is an exploit module for the Metasploit Framework, please see http://metasploit.com/projects/Framework for more...

phpBB 2.0.16 - Cross-Site Scripting Remote Cookie Disclosure (Cookie Grabber)

// Original Author: 'Sjaak Rake' Ref: http://www.hackthissite.org/articles/read/175/ IP: ' .$ip. ' Date and Time: ' .$date. ' Referer: '.$referer.''; fclose$fp; ? //rename it to cookies.php and create one new file steal.php and chmod it to 777 milw0rm.com 2005-07-13...