标签 ‘phpbb’ 下的日志

拿下PHPBB.com的过程(老外写的)

2009/02/12 17:16 | 鬼仔 | 技术文章 | 2 个回复

# 鬼仔:前几天比较大的新闻了,PHPBB的数据库也被拿了下来。今天更新Blog想起来这篇还没发,估计不少朋友已经看过了。

原文链接

It all started on Jan 14th when I was surfing milw0rm and came across this exploit: http://www.milw0rm.com/exploits/7778 I then remembered that phpbb.com was running PHPlist and went looking through my email to find the link to the script’s location. So I went to phpbb.com/lists and sure enough they were running a vulnerable version. Next I enabled my favorite program proxy program and tried http://www.phpbb.com/lists/admin/index.php?_SERVER%5bConfigFile%5d=../../../../../../etc/ passwd and sure enough it included the etc/passwd
阅读全文 »

Tags:

phpBB Links MOD Remote Blind SQL Injection Exploit

2007/10/26 5:02 | 鬼仔 | 工具收集 | 消灭0回复

来源:7jdg's blog

阅读全文 »

Tags: , , ,

PHPBB all versions Remote Code Execution Exploit

2007/06/02 11:38 | 鬼仔 | 工具收集 | 消灭0回复

鬼仔注:我没有测试。注意看代码中的:This file is part of the Metasploit Framework

漏洞描述:Phpbb所有版本通杀漏洞
漏洞来源:资库漏洞研究中心
发布日期:2007-5-26(发布时期暂无任何补丁)
XORCREW in association with HD Moore have released the first unserialize() bug. were done owning everyone so kiddos have fun. Its a msf 3.0 module so get msf 3.0 if you want to use it. The exploit works because of phpbb's 阅读全文 »

Tags: ,