NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Full-Disclosure> 2007-06

Re: [Full-disclosure] 0DAY RFI in phpBB <= 2.0.22 HOT

From: Slythers Bro (slythersgmail.com)
Date: Fri Jun 01 2007 - 13:38:56 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

i saw that in functions_post.php :

if (!defined <http://www.phpbb.de/doku/xref/_functions/defined.html>('IN_PHPBB
<http://www.phpbb.de/doku/xref/_constants/IN_PHPBB.html>'))
  {
       die('Hacking attempt');
  }

so this RFI can't work

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]