[27378] in bugtraq
phpBBmod contains an open phpinfo
daemon@ATHENA.MIT.EDU (Roland Verlander)
Thu Oct 10 14:22:00 2002
Message-ID: <004501c27035$b2b96fb0$17f58690@DH53F61S>
From: "Roland Verlander" <rolyv@bigpond.com>
To: <bugtraq@securityfocus.com>
Date: Thu, 10 Oct 2002 18:19:04 +1000
MIME-Version: 1.0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
phpBBmod (http://phpbbmod.sourceforge.net), an enhanced version of phpBB
contains an open phpinfo.php file.
Going to phpinfo.php on any board using phpBBmod (googling for "Boosted by
phpBBmod" is around ~48,000 results, i tried a few from google search and
they all had a phpinfo.php file)
Solution: Remove phpinfo.php
Exploit: Go to phpinfo.php on any board using phpBBmod
Example: http://phpbbmod.sourceforge.net/phpBB/phpinfo.php
Versions vulnerable: 1.3.3, older ones are proberably vulnerable too
phpinfo discloses lots of info about the server that its running on so this
is an issue that should be fixed.
I have CCed Dwainehead, the main phpBBmod 1.x developer
