CVE-2006-5390

2006-10-18T19:07:00
ID CVE-2006-5390
Type cve
Reporter cve@mitre.org
Modified 2017-10-19T01:29:00

Description

PHP remote file inclusion vulnerability in includes/functions_mod_user.php in the ACP User Registration (MMW) 1.00 module for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. This vulnerability is addressed in the following product release: phpBB, ACP User Registration, 1.0.1