SimpleBBS 1.0.6/1.0.7/1.1 - Arbitrary Command Execution

source: https://www.securityfocus.com/bid/17501/info SimpleBBS is prone to an arbitrary command-execution vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this vulnerability to execute arbitrary PHP commands in the...

SimpleBBS 1.0.61.0.71.1 - Arbitrary Command Execution

SimpleBBS 1.0.61.0.71.1 - Arbitrary Command Execution source: https://www.securityfocus.com/bid/17501/info SimpleBBS is prone to an arbitrary command-execution vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this...

SimpleBBS 1.1 - Remote Command Execution (C)

SimpleBBS 1.1 - Remote Command Execution C / SimpleBBS !--total 188 drwxrwxrwx 2 f1 f1 4096 Dec 6 17:02 . drwxr-xr-x 7 f1 f1 4096 Nov 17 2002 .. -rw-r--r-- 1 f1 f1 916 Oct 20 09:30 WSFTP.LOG -rwxrwxrwx 1 f1 f1 28 Nov 17 2002 categories.php -rwxrwxrwx 1 f1 f1 151 Dec 7 09:11 forums.php -rwxrwxrwx ...

SimpleBBS 1.0.6 - 'users.php' Insecure File Permissions

source: https://www.securityfocus.com/bid/7045/info SimpleBBS reportedly creates sensitive files with world-readable permissions. As a result anyone who has access to SimpleBBS web resources may access confidential information stored in the SimpleBBS user database. This vulnerability was reported...