Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

bugtraq logo Bugtraq mailing list archives

MyBB 1.2 Local File Incusion
From: o.y.6 () hotmail com, ""@securityfocus.com, D3vil-0x1 () securityfocus com
Date: 30 Jan 2006 10:38:29 -0000
Invalid characters removed from From: o.y.6 () hotmail com, |@securityfocus.com,

#### D3vil-0x1 MyBB Bug ###
## Local File Inclusion
## 
## MyBB 1.2 -> Admin Can Include Local File :)

## File :- admin/plugins.php 
                                
                                        Line :- 51
//*

        if($mybb->input['action'] == "activate")

        {

        $codename = $mybb->input['plugin']; << Input From POST

        $file = $codename.".php";                               << Set File Type [ we can remove the type by NULL ( %00 
) ]

        if($mybb->input['activate'])

        {

        .....
        .....

        }

        elseif($mybb->input['deactivate'])

        {

        .....
        .....

        }



        include "./inc/plugins/$file"; << Include BIG BUG :P

*//
#---------------------------------------------------------#

  By Date           By Thread  

Current thread:
  • MyBB 1.2 Local File Incusion (Jan 30)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]