https://www.exploit-db.com/exploits/21931
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200212-267

phpBBmod1.3.3版本phpinfo.php执行phpinfo函数。远程攻击者获得敏感环境信息。

source: http://www.securityfocus.com/bid/5942/info

phpBBmod ships with a sample script (phpinfo.php) that may disclosure sensitive information to remote attackers. When this script is accessed, sensitive information about the underlying environment will be revealed.

This issue was reported in phpBBmod version 1.3.3. Other versions may also be affected. 

http://www.example.com/phpBB/phpinfo.php

来源:BID
名称:5942
链接:http://www.securityfocus.com/bid/5942
来源:XF
名称:phpbbmod-phpinfo-information-disclosure(10335)
链接:http://www.iss.net/security_center/static/10335.php