what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 3 of 3

Files from AnthraX101

iDEFENSE Security Advisory 2005-02-22.2

Posted Feb 26, 2005

Authored by iDefense Labs, AnthraX101 | Site idefense.com

iDEFENSE Security Advisory 02.22.05 - Remote exploitation of an input validation vulnerability in the phpBB Group's phpBB2 bulletin board system allows attackers to unlink (delete) arbitrary system files under the privileges of the web server.

tags | advisory, remote, web, arbitrary

advisories | CVE-2005-0258

SHA-256 | 8a6f19eb9ba57da2748ca989db18c6ee62630c633912223b282be4427a4d42ef

Download | Favorite | View

iDEFENSE Security Advisory 2005-02-22.1

Posted Feb 26, 2005

Authored by iDefense Labs, AnthraX101 | Site idefense.com

iDEFENSE Security Advisory 02.22.05 - Remote exploitation of an input validation vulnerability in the phpBB Group's phpBB2 bulletin board system allows attackers to read the contents of arbitrary system files under the privileges of the webserver.

tags | advisory, remote, arbitrary

advisories | CVE-2005-0259

SHA-256 | 4ab9593103bf1ea38ef611234e57df93b7e8b9dd08dd4db923e59f22431edc8c

Download | Favorite | View

phpBBsql.txt

Posted Feb 26, 2005

Authored by AnthraX101

The phpbb_clean_username function in phpBB has an improper order of execution allowing path and SQL table disclosure.

tags | advisory

SHA-256 | a215577b17a268ad3849e2a705244e52a0184db08a9f805716fa54c6e0d2d79e

Download | Favorite | View