MyBB < 1.6.12 Multiple Vulnerabilities

According to its version number, the MyBB install hosted on the remote web server is affected by multiple vulnerabilities : - A cross-site scripting flaw exists in misc.php due to improper validation of input when generating a small popup list of smilies. This allows a remote attacker to create a...

CVE-2007-1937

CVE-2007-1937 affects Scorp Book 1.0 (smilies.php) where a remote file inclusion vulnerability exists in the config parameter that allows an attacker to execute arbitrary PHP code. The NVD summary lists a network-accessible vector with medium base severity (CVSS2: AV:N/AC:M/Au:N/C:P/I:P/A:P; base...

scorpbook10-rfi.txt

Portal : Scorp Book v1.0 Download : http://www.ectona.org/download/?id=598&s=info Author : KaRTaLl | [email protected] Class : Remote File Include Exploit use IO::Socket; if @ARGV ; while$cmd ! "END" $socket = IO::Socket::INET-newProto="tcp", PeerAddr="$host", PeerPort="80" or die "Connect...

Scorp Book 1.0 (smilies.php config) Remote File Inclusion Vulnerability

Exploit for unknown platform in category web applications ======================================================================= Scorp Book 1.0 smilies.php config Remote File Inclusion Vulnerability ======================================================================= !/usr/bin/perl .-""""""""...