CVE-2008-2481

2008-05-28T15:32:00
ID CVE-2008-2481
Type cve
Reporter cve@mitre.org
Modified 2017-09-29T01:31:00

Description

PHP remote file inclusion vulnerability in authentication/phpbb3/phpbb3.functions.php in phpRaider 1.0.7 and 1.0.7a, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the pConfig_auth[phpbb_path] parameter.