AOH :: Web BBS :: Frequently Exploited

AOH :: Web BBS :: Frequently Exploited :: B06-1644.HTM
MyBB 1.1.0~global.php~ParameterExtracting

MyBB1.1.0~global.php~ParameterExtracting MyBB1.1.0~global.php~ParameterExtracting


ORIGINAL ADVISORY:
http://myimei.com/security/2006-04-14/mybb110globalphpparameterextracting.html 
=97=97=97=97=97=97-Summary=97=97=97=97=97-
Software: MyBB
Sowtware=92s Web Site: http://www.mybboard.com 
Versions: 1.1.0
Class: Remote
Status: Unpatched
Exploit: Available
Solution: Available
Discovered by: imei addmimistrator
Risk Level: Very high
=97=97=97=97=97=96Description=97=97=97=97=97
There is a security bug in MyBB 1.1.0 software files global.php that allows attacker performe varable extracting.
SEE ORIGINAL ADV FOR MORE INFO!

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better). Site design & layout copyright © 1986-2009 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.