Vulnerabilities > CVE-2005-2633 - Remote File Include vulnerability in PHPTB Topic Board

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
phptb
exploit available
NVD
Published: 2005-08-23
Updated: 2016-10-18

Summary

Multiple PHP file inclusion vulnerabilities in (1) admin_o.php, (2) board_o.php, (3) dev_o.php, (4) file_o.php or (5) tech_o.php in PHPTB Topic Board 2.0 and earlier allow remote attackers to execute arbitrary PHP code via the absolutepath parameter.

Vulnerable Configurations

Part Description Count
Application
Phptb
1

Exploit-Db

  • descriptionPHPTB Topic Board 2.0 admin_o.php absolutepath Parameter Remote File Inclusion. CVE-2005-2633. Webapps exploit for php platform
    idEDB-ID:26162
    last seen2016-02-03
    modified2005-08-17
    published2005-08-17
    reporterFilip Groszynski
    sourcehttps://www.exploit-db.com/download/26162/
    titlePHPTB Topic Board 2.0 admin_o.php absolutepath Parameter Remote File Inclusion
  • descriptionPHPTB Topic Board 2.0 file_o.php absolutepath Parameter Remote File Inclusion. CVE-2005-2633. Webapps exploit for php platform
    idEDB-ID:26165
    last seen2016-02-03
    modified2005-08-17
    published2005-08-17
    reporterFilip Groszynski
    sourcehttps://www.exploit-db.com/download/26165/
    titlePHPTB Topic Board 2.0 file_o.php absolutepath Parameter Remote File Inclusion
  • descriptionPHPTB Topic Board 2.0 board_o.php absolutepath Parameter Remote File Inclusion. CVE-2005-2633. Webapps exploit for php platform
    idEDB-ID:26163
    last seen2016-02-03
    modified2005-08-17
    published2005-08-17
    reporterFilip Groszynski
    sourcehttps://www.exploit-db.com/download/26163/
    titlePHPTB Topic Board 2.0 board_o.php absolutepath Parameter Remote File Inclusion
  • descriptionPHPTB Topic Board 2.0 tech_o.php absolutepath Parameter Remote File Inclusion. CVE-2005-2633. Webapps exploit for php platform
    idEDB-ID:26166
    last seen2016-02-03
    modified2005-08-17
    published2005-08-17
    reporterFilip Groszynski
    sourcehttps://www.exploit-db.com/download/26166/
    titlePHPTB Topic Board 2.0 tech_o.php absolutepath Parameter Remote File Inclusion

References