You are missing our premiere tool bar navigation system! Register and use it for FREE!

NukeCops  
•  Home •  Downloads •  Gallery •  Your Account •  Forums • 
Readme First
- Readme First! -

Read and follow the rules, otherwise your posts will be closed
Modules
· Home
· FAQ
· Buy a Theme
· Advertising
· AvantGo
· Bookmarks
· Columbia
· Community
· Donations
· Downloads
· Feedback
· Forums
· PHP-Nuke HOWTO
· Private Messages
· Search
· Statistics
· Stories Archive
· Submit News
· Surveys
· Theme Gallery
· Top
· Topics
· Your Account
Who's Online
There are currently, 531 guest(s) and 0 member(s) that are online.

You are Anonymous user. You can register for free by clicking here
phpBB Arbitrary File Disclosure Vulnerability
Securitycrypto writes "Security Alert: phpBB Group phpBB Arbitrary File Disclosure Vulnerability! The remote exploitation of an input validation vulnerability in the phpBB Group's phpBB2 bulletin board system allows attackers to read the contents of arbitrary system files under the privileges of the web server.

Exploitation of this vulnerability allows remote attackers to view arbitrary system files under the privileges of the underlying web server. An attacker must have, or be able to create an account on the target system. Non-default settings must also be enabled for exploitation to be possible. Upon successful exploitation an attacker may be able to further compromise the system by gleaning system information that would otherwise be inaccessible to the attacker.

More information:
  • idefense
  • phpbb.com
  • mitre.org"
    • Posted on Wednesday, February 23 @ 14:23:38 CET by VinDSL
    		 
    Related Links
    · Computer Cops
    · More about Security
    · News by VinDSL
    Most read story about Security:
    PHP-Nuke admin.php security hole - PATCHED
    Article Rating
    Average Score: 0
    Votes: 0

    Please take a second and vote for this article:

    Excellent
    Very Good
    Good
    Regular
    Bad
    Options

     Printer Friendly Page  Printer Friendly Page

     Send to a Friend  Send to a Friend
    Threshold
    The comments are owned by the poster. We aren't responsible for their content.

    No Comments Allowed for Anonymous, please register
    Powered by TOGETHER TEAM srl ITALY http://www.togetherteam.it - DONDELEO E-COMMERCE http://www.DonDeLeo.com - TUTTISU E-COMMERCE http://www.tuttisu.it
    Web site engine's code is Copyright © 2002 by PHP-Nuke. All Rights Reserved. PHP-Nuke is Free Software released under the GNU/GPL license.
    Page Generation: 0.168 Seconds - 472 pages served in past 5 minutes. Nuke Cops Founded by Paul Laudanski (Zhen-Xjell)
    :: FI Theme :: PHP-Nuke theme by coldblooded (www.nukemods.com) ::