PHP remote file inclusion vulnerability in templates/default/tpl_message.php in PHP TopTree BBS 2.0.1a and earlier allows remote attackers to execute arbitrary PHP code via a URL in the right_file parameter.
CPE | Name | Operator | Version |
---|---|---|---|
php_toptree_bbs | eq | <= 2.0.1a |