/*
--------------------------------------------------------
Advisory - 21/03/05
by suBzero
email: kisobox [at] gmail.com
--------------------------------------------------------
Program: phpBB plus <= 1.53
Homepage: http://www.phpbb2.de
Vulnerable Versions: phpBB plus 1.53 & Lower versions
Risk: Low Risk
Impact: phpinfo details disclosure.

phpBB plus 1.53 or maybe lower version
---------------------------------------------------------

- Description
---------------------------------------------------------
phpBB plus <= 1.53 is an premoded phpBB by www.phpbb2.de.
phpBB plus 1.53 is an Open Source project that is developed by programmers.


- Tested
---------------------------------------------------------
I tested this bug in localhost and other forums. 
for more you can find using http://www.google.com

- Exploit
---------------------------------------------------------
low risk. Attacker can see system info and finger printing before futher attack.

- Solution
--------------------------------------------------------
1) Delete folder /phpinfo or rename it.
2) create .htaccess to protect admin folder.

- Greets -
---------------------------------------------------------
everyone out there.
--