EUVD-2006-1800

Malware in sbrugna...

EUVD-2005-4022

Malware in sbrugna...

EUVD-2005-4130

Malware in sbrugna...

SimpleBBS <= 1.1 - Remote Commands Execution Exploit

No description provided by source. ?php ---simplebbs11xpl.php 19.42 02/12/2005 SimpleBBS = v1.1 remote commands execution coded by rgod site: http://rgod.altervista.org - this works regardless of magicquotesgpc settings usage: launch from Apache, fill in requested fields, then go! Sun-Tzu: He wil...

SimpleBBS 1.0.6/1.0.7/1.1 - Remote Arbitrary Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/17501/info SimpleBBS is prone to an arbitrary command-execution vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this vulnerability to...

SimpleBBS <= 1.1 - Remote Commands Execution Exploit (c code)

No description provided by source. / SimpleBBS = v1.1 remote commands execution in c coded by: unitedasia v.Dec.7.2005 greetz: iloveyouma http://geography.about.com/library/maps/blrasia.htm http://www.lib.utexas.edu/maps/middleeastandasia/asiapol00.jpg $ gcc -o bbs bbs.c Usage ./bbs host /folder/...

SimpleBBS 1.0.6 Users.php Insecure File Permissions Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7045/info SimpleBBS reportedly creates sensitive files with world-readable permissions. As a result anyone who has access to SimpleBBS web resources may access confidential information stored in the SimpleBBS user databas...

WD-SMPL.txt

!/usr/bin/perl -w SimpleBBS v1.1posts.php remote command execution Xploit Discovered & Coded By rUnViRuS World Defacers TeaM WD-members: rUnViRuS - Papipsycho Details ======= Note : SimpleBBS v1.1posts.php remote command execution Xploit . . . Join with us to Get Prvi8 Exploit Priv8 Priv8 Priv8...

Directory traversal

Directory traversal vulnerability in posts.php in SimpleBBS 1.0.6 through 1.1 allows remote attackers to include and execute arbitrary files via ".." sequences in the language cookie, as demonstrated by by injecting the code into the glsession cookie of users.php, which is stored in error.log...

CVE-2006-1800

Directory traversal vulnerability in posts.php in SimpleBBS 1.0.6 through 1.1 allows remote attackers to include and execute arbitrary files via ".." sequences in the language cookie, as demonstrated by by injecting the code into the glsession cookie of users.php, which is stored in error.log...

CVE-2006-1800

Directory traversal vulnerability in posts.php in SimpleBBS 1.0.6 through 1.1 allows remote attackers to include and execute arbitrary files via ".." sequences in the language cookie, as demonstrated by by injecting the code into the glsession cookie of users.php, which is stored in error.log...

CVE-2006-1800

CVE-2006-1800 affects SimpleBBS 1.0.6–1.1, where a directory-traversal flaw in posts.php allows remote attackers to include and execute arbitrary files. The root cause is directory traversal via ".." sequences in the language cookie, demonstrated by injecting code into the gl_session cookie of us...

SimpleBBS 1.0.6/1.0.7/1.1 - Arbitrary Command Execution

source: https://www.securityfocus.com/bid/17501/info SimpleBBS is prone to an arbitrary command-execution vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this vulnerability to execute arbitrary PHP commands in the...

SimpleBBS 1.0.61.0.71.1 - Arbitrary Command Execution

SimpleBBS 1.0.61.0.71.1 - Arbitrary Command Execution source: https://www.securityfocus.com/bid/17501/info SimpleBBS is prone to an arbitrary command-execution vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this...

SimpleBBS v1.1&#40;posts.php&#41; remote command execution

World Defacers Team ====================================== --------------------Summary---------------- eVuln ID: WD10 Vendor: SimpleBBS Vendor's Web Site: www.simplemedia.org Software: SimpleBBS Forums Sowtware's Web Site: www.simplemedia.org Versions: v1.1 v 1.0. Class: Remote PoC/Exploit:...

SimpleBBS v1.1&#40;posts.php&#41; remote command execution

World Defacers Team ====================================== --------------------Summary---------------- eVuln ID: WD10 Vendor: SimpleBBS Vendor's Web Site: www.simplemedia.org Software: SimpleBBS Forums Sowtware's Web Site: www.simplemedia.org Versions: v1.1 v 1.0. Class: Remote PoC/Exploit:...

simplebbs exploit-vulnerability warning-the black bar safety net

Go from: blog.56bug.org See the article, see do not understand to the authors the following animation Today show you simplebbs exploit to get shell method,and vulnerabilities related to the use of tools Looking for target:google inside search Powered by SimpleBBS you will find many This forum can...

SimpleBBS topics.php name Parameter Arbitrary Command Execution

The remote host appears to be running SimpleBBS, an open source bulletin board system written in PHP. The version of SimpleBBS installed on the remote host fails to sanitize user-supplied input to the 'name' parameter of the 'index.php' script when creating a new topic and adds that input to...

CVE-2005-4135

Direct static code injection vulnerability in includes/newtopic.php in SimpleBBS 1.1 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the Host header possibly the name parameter or variable, which is then written to data/topics.php...

CVE-2005-4135

CVE-2005-4135 affects SimpleBBS 1.1 and earlier. The vulnerability is a direct static code injection in includes/newtopic.php that allows remote code execution via shell metacharacters in the Host header (potentially the name parameter or variable), which is then written to data/topics.php. This ...