virus logo Intrusion Prevention

Integramod.Portal.Phpbb_Root_Path.File.Inclusion

description-logoDescription

Integramod Portal has a remote file-include vulnerability. A remote attacker could execute an arbitrary script on the web server, with the privileges of the server, via a specially-crafted URL request to the 'includes/functions_portal.php' script, by using the 'phpbb_root_path' parameter to specify a malicious PHP file from a remote system.

affected-products-logoAffected Products

IntegraMOD 2.x and prior.

Impact logoImpact

Gain Access.

recomended-action-logoRecommended Actions

Currently we are not aware of any vendor-supplied patches for this issue.
http://www.integramod2.com/forum/portal.php

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 14281
Created Mar 07, 2007
Updated Nov 15, 2021
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Default Action drop
Active
Affected OS Windows, Linux, BSD, Solaris, MacOS
Affected App PHP_app