CVE-2006-5390

2006-10-1819:00:00

mitre

www.cve.org

7.6 High

AI Score

Confidence

High

0.063 Low

EPSS

Percentile

93.7%

JSON

PHP remote file inclusion vulnerability in includes/functions_mod_user.php in the ACP User Registration (MMW) 1.00 module for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.

References

secunia.com/advisories/22436

www.osvdb.org/29734

www.phpbb.com/phpBB/viewtopic.php?p=2504370#2504370

www.securityfocus.com/bid/20558

exchange.xforce.ibmcloud.com/vulnerabilities/29571

www.exploit-db.com/exploits/2551