PT-2009-3233 · Phpbb · Pnphpbb2

Staker

Published

2009-02-16

Updated

2017-09-29

CVE-2009-0592

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions PNphpBB2 versions 1.2i and earlier

Description The issue allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the ModName parameter to various PHP files in the admin/ directory, including "admin words.php", "admin groups reapir.php", "admin smilies.php", "admin ranks.php", "admin styles.php", and "admin users.php".

Recommendations For PNphpBB2 versions 1.2i and earlier, consider restricting access to the admin/ directory and its files, such as "admin words.php", "admin groups reapir.php", "admin smilies.php", "admin ranks.php", "admin styles.php", and "admin users.php", to minimize the risk of exploitation. Avoid using the ModName parameter in these files until the issue is resolved.

Exploit

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2009-0592

Affected Products

Pnphpbb2

PT-2009-3233 · Phpbb · Pnphpbb2

CVE-2009-0592

Weakness Enumeration

Related Identifiers

Affected Products

References · 4