Vulnerabilities > CVE-2007-3272 - Local File Include vulnerability in Minibb 2.0.5

047910
CVSS 7.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
NONE
Availability impact
NONE
network
low complexity
minibb
exploit available

Summary

Directory traversal vulnerability in index.php in MiniBB 2.0.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the language parameter in a register action.

Vulnerable Configurations

Part Description Count
Application
Minibb
1

Exploit-Db

descriptionMiniBB 2.0.5 (language) Local File Inclusion Exploit. CVE-2007-3272. Webapps exploit for php platform
fileexploits/php/webapps/4076.php
idEDB-ID:4076
last seen2016-01-31
modified2007-06-17
platformphp
port
published2007-06-17
reporterDj7xpl
sourcehttps://www.exploit-db.com/download/4076/
titleMiniBB 2.0.5 language Local File Inclusion Exploit
typewebapps