phpBB Knowledge Base Mod File Inclusion Vulnerability Date: Monday, May 01, 2006 @ 14:19:26 CDT Topic: Security SECUNIA ADVISORY ID: SA19892 VERIFY ADVISORY: http://secunia.com/advisories/19892/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: Knowledge Base Mod 2.x (module for phpBB) http://secunia.com/product/9638/ DESCRIPTION: [Oo] has discovered a vulnerability Knowledge Base Mod for phpBB, which can be exploited by malicious people to compromise a vulnerable system. Input passed to the "module_root_path" parameter in /includes/kb_constants.php isn't properly verified, before it is used to include files. This can be exploited to include arbitrary files from external and local resources. Successful exploitation requires that "register_globals" is enabled. The vulnerability has been confirmed in version 2.0.2. Other versions may also be affected. SOLUTION: Edit the source code to ensure that input is properly sanitised. PROVIDED AND/OR DISCOVERED BY: [Oo] ORIGINAL ADVISORY: http://milw0rm.com/exploits/1728 This article comes from Ravens PHP Scripts https://www.ravenphpscripts.com The URL for this story is: https://www.ravenphpscripts.com/modules.php?name=News&file=article&sid=2142