Suspekt…

Archive for February, 2009

Some facts about the PHPList vulnerability and the phpbb.com hack

Friday, February 6th, 2009

A few days ago phpbb.com was hacked through a super-globals-overwrite vulnerability in PHPList that was used by an attacker for a local file inclusion exploit. Details about the whole attack, written down by someone who claims to be the attacker, can be read here. From the explanation it seems that ...

Posted in PHP, Security | 13 Comments »

Recent Comments
- Johny:Interesting topic, i gonna att...
- Kevin Schroeder:Usually we try to get them up ...
- Stefan Esser:Well Zend usually does record ...
- kuza55:Any chance you would be able t...
- PHPGangsta:Hi Stefan, ich habe das Web...
- Stefan:There are no offical windows b...
- G. Flindt:Where can I find the Windows b...
- Stefan:The pointer obfuscation is for...
- Willem:Can you tell me what kind of p...
- trophaeum:thanks pax team for spending t...
Recent Post

Contact
Stefan Esser (email)
SektionEins GmbH
Eupener Strasse 150, 50933 Köln
Pages
- Switch Table Extension
Archives
Categories
- CGNSec (RSS) (7)
- iPhone (RSS) (2)
- java (RSS) (1)
- korea (RSS) (4)
- MySQL (RSS) (4)
- PHP (RSS) (50)
- Projects (RSS) (10)
- Security (RSS) (56)
- Uncategorized (RSS) (1)
People I Read

Archive for February, 2009

Some facts about the PHPList vulnerability and the phpbb.com hack

Recent Comments

Recent Post

Contact

Pages

Archives

Categories

People I Read