CVE-2009-0444 Information

Description

Multiple PHP remote file inclusion vulnerabilities in GRBoard 1.8 when register_globals is enabled and magic_quotes_gpc is disabled allow remote attackers to execute arbitrary PHP code via a URL in the (1) theme parameter to (a) 179_squarebox_pds_list/view.php (b) 179_squarebox_minishop_expand/view.php (c) 179_squarebox_gallery_list_pds/view.php (d) 179_squarebox_gallery_list/view.php (e) 179_squarebox_gallery/view.php (f) 179_squarebox_board_swfupload/view.php (g) 179_squarebox_board_expand/view.php (h) 179_squarebox_board_basic_with_grcode/view.php (i) 179_squarebox_board_basic/view.php (j) 179_simplebar_pds_list/view.php (k) 179_simplebar_notice/view.php (l) 179_simplebar_gallery_list_pds/view.php (m) 179_simplebar_gallery/view.php and (n) 179_simplebar_basic/view.php in theme/; the (2) path parameter to (o) latest/sirini_gallery_latest/list.php; and the (3) grboard parameter to (p) include.php and (q) form_mail.php.

Reference

http://secunia.com/advisories/33812 http://www.securityfocus.com/bid/33602 https://www.exploit-db.com/exploits/7979