CVE-2006-5735

2006-11-06T13:07:00
ID CVE-2006-5735
Type cve
Reporter NVD
Modified 2018-10-17T17:44:18

Description

Directory traversal vulnerability in include/common.php in PunBB before 1.2.14 allows remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in the language parameter, related to register.php storing a language value in the users table.