CVE-2007-5100

Multiple PHP remote file inclusion vulnerabilities in phpBB Plus 1.53, and 1.53a before 20070922, when registerglobals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter to 1 language/langgerman/langadminalbum.php, 2...

Cross site scripting

Cross-site scripting XSS vulnerability in profile.php in phpBB XS 2 allows remote attackers to inject arbitrary web script or HTML via the selfdes parameter in a profileinfo editprofile action...

CVE-2007-5033

Cross-site scripting XSS vulnerability in profile.php in phpBB XS 2 allows remote attackers to inject arbitrary web script or HTML via the selfdes parameter in a profileinfo editprofile action...

CVE-2007-5033

The provided data confirms CVE-2007-5033 is an XSS vulnerability in profile.php of phpBB XS 2. The flaw allows remote attackers to inject arbitrary web script or HTML via the selfdes parameter in a profile_info editprofile action. Affected component: profile.php in phpBB XS 2; root cause: insuffi...

CVE-2007-5033

Cross-site scripting XSS vulnerability in profile.php in phpBB XS 2 allows remote attackers to inject arbitrary web script or HTML via the selfdes parameter in a profileinfo editprofile action...

phpbb-permxss.txt

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ PhpBB Xs 2 profile.php Permanent Xss Vulnerability +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Found By Seph1roth +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ POST METHOD Corrupted page:...

PhpBB Xs 2 profile.php Permanent Xss Vulnerability

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ PhpBB Xs 2 profile.php Permanent Xss Vulnerability +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Found By Seph1roth +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ POST METHOD Corrupted page:...

Remote file inclusion

PHP remote file inclusion vulnerability in language/langgerman/langmainalbum.php in phpBB Plus 1.53, and 1.53a before 20070922, allows remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter...

CVE-2007-5009

PHP remote file inclusion vulnerability in language/langgerman/langmainalbum.php in phpBB Plus 1.53, and 1.53a before 20070922, allows remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter...

CVE-2007-5009

CVE-2007-5009 is a PHP remote file inclusion vulnerability in phpBB Plus 1.53 and 1.53a before 20070922, allowing remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter within language/lang_german/lang_main_album.php. The connected records also describe related ...

CVE-2007-5009

PHP remote file inclusion vulnerability in language/langgerman/langmainalbum.php in phpBB Plus 1.53, and 1.53a before 20070922, allows remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter...

phpBB Plus <= 1.53 (phpbb_root_path) Remote File Inclusion Vuln

Exploit for unknown platform in category web applications =============================================================== phpBB Plus = 1.53 phpbbrootpath Remote File Inclusion Vuln =============================================================== AUTHOR = Mehrad Ansari Targhi My Yahoo Messenger ID ...

phpBB Plus &lt;= 1.53 (phpbb_root_path) Remote File Inclusion Vuln

No description provided by source. AUTHOR = Mehrad Ansari Targhi E-Mail : [email protected] My Yahoo Messenger ID : mehrad1989 Script Download URL : http://www.phpbbplus.net/PhpBBPlus1.53.zip This Is A RFI Bug . This Bug Is In : PHPBBPLUS INSTALLED /language/langgerman/lang mainalbum.php Explo...

phpBB Plus 1.53 - phpbb_root_path Remote File Inclusion

phpBB Plus 1.53 - phpbbrootpath Remote File Inclusion AUTHOR = Mehrad Ansari Targhi E-Mail : [email protected] My Yahoo Messenger ID : mehrad1989 Script Download URL : http://www.phpbbplus.net/PhpBBPlus1.53.zip This Is A RFI Bug . This Bug Is In : PHPBBPLUS INSTALLED /language/langgerman/lang...

CVE-2007-4984

SQL injection vulnerability in index.php in the Ktauber.com StylesDemo mod for phpBB 2.0.xx allows remote attackers to execute arbitrary SQL commands via the s parameter...

Sql injection

SQL injection vulnerability in index.php in the Ktauber.com StylesDemo mod for phpBB 2.0.xx allows remote attackers to execute arbitrary SQL commands via the s parameter...

CVE-2007-4984

SQL injection vulnerability in index.php in the Ktauber.com StylesDemo mod for phpBB 2.0.xx allows remote attackers to execute arbitrary SQL commands via the s parameter...

CVE-2007-4984

CVE-2007-4984 affects the Ktauber.com StylesDemo mod for phpBB 2.0.x. Vulnerable component: index.php; vulnerable via the s parameter causing SQL injection. Root cause: improper handling of input leading to arbitrary SQL execution by remote attackers. Impact, per CVSS: AV:N/AC:L/Au:N/C:P/I:P/A:P ...

phpBB Mod Ktauber.com StylesDemo Blind SQL Injection Exploit

No description provided by source. --------------------------------------------------------------- / | |\ / | / |/ | | |/ | | / | | | | | |/ | | // | || | ||| /| / /\ | |||| /| / / --------------------------------------------------------------- Http://www.inj3ct-it.org Staffatinj3ct-itdotorg...

phpbbstyles-sql.txt

--------------------------------------------------------------- / | |\ \ / | / |/ | | |/ \ | | | |||| /| / / --------------------------------------------------------------- Http://www.inj3ct-it.org Staffatinj3ct-itdotorg -------------------------------------------------------------- Ktauber.com...