CVE-2006-5284

2006-10-13T19:07:00
ID CVE-2006-5284
Type cve
Reporter cve@mitre.org
Modified 2017-10-19T01:29:00

Description

PHP remote file inclusion vulnerability in auth/phpbb.inc.php in Shen Cheng-Da PHP News Reader (aka pnews) 2.6.4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the CFG[auth_phpbb_path] parameter. Successful exploitation requires that "register_globals" is enabled.