IPB (Invision Power Board) Full Path Disclusure

From: security@xxxxxxxxx
Date: 19 Apr 2007 14:39:42 -0000

Hello

IPB (Invision Power Board) Full Path Disclusure

Discovered By : HACKERS PAL
Copy rights : HACKERS PAL
Website : http://www.soqor.net
Email Address : security@xxxxxxxxx

Tested on 2.1.X and 2.2.X Maybe Infected

ips_kernel/PEAR/Text/Diff3.php
ips_kernel/PEAR/Text/Diff/Renderer/unified.php
ips_kernel/PEAR/Text/Diff/Renderer/inline.php
sources/acp_loaders/acp_pages_components.php
sources/classes/bbcode/class_bbcode_legacy.php
sources/classes/bbcode/class_bbcode.php
sources/classes/editor/class_editor_std.php
sources/classes/editor/class_editor_rte.php
sources/classes/post/class_post_edit.php
sources/classes/post/class_post_new.php
sources/classes/post/class_post_reply.php
sources/lib/search_mysql_man.php
sources/lib/search_mysql_ftext.php
sources/sql/mysql_admin_queries.php
sources/sql/mysql_extra_queries.php
sources/sql/mysql_queries.php
sources/sql/mysql_subsm_queries.php
sources/loginauth/ldap/auth.php

And Many Other Files Are infected :)

# WwW.SoQoR.NeT

Prev by Date: Re: ZDI-07-020: BMC Performance Manager SNMP Command Execution Vulnerability
Next by Date: [waraxe-2007-SA#049] - Multiple vulnerabilities in Phorum 5.1.20
Previous by thread: CfP Hack.lu 2007
Next by thread: [waraxe-2007-SA#049] - Multiple vulnerabilities in Phorum 5.1.20
Index(es):
- Date
- Thread

Relevant Pages

Re: treetop?
... Jinnie to equate the exercising of Consitutional Rights with the ... dummy - it's just a website. ... power to kick someone off the website for unnacceptable behaviour. ... has nothing to do with someone who owns and maintains a free website ...
(rec.skydiving)
Re: treetop?
... Jinnie to equate the exercising of Consitutional Rights with the ... private citizens who have every right in the fucking book to do it the ... dummy - it's just a website. ... this is Congress making a law to prohibit ...
(rec.skydiving)
Re: Stealing Product Descriptions
... website, that's not going to help his case. ... best to file a VERO for each one and let eBay deal; ... filing the complaint must be the rights owner. ...
(alt.marketing.online.ebay)
Re: My Website Has Been Taken Down
... that reference Mr. Cooper's literary work. ... putting my website back up, sans all the TML/Complete Pascal stuff. ... I will inform this gentleman that it has been placed there under MY RIGHTS ... If I get any flack from this guy I will ask the Canadian Law Society to ...
(comp.sys.apple2)
Re: Are they copying me?
... > | website or a bulletin board. ... country in which you wished to enforce your rights to copyright. ... decide is how much fuss you are prepared to make. ...
(uk.rec.walking)