Lucene search
SAINT CorporationSAINT:2DD650797569B41E89BD6D85DC32071BHistoryDec 28, 2005 - 12:00 a.m.
phpBB viewtopic.php highlight parameter vulnerability
2005-12-2800:00:00
SAINT Corporation
www.saintcorporation.com
27
0.152 Low
EPSS
Percentile
95.3%
Added: 12/28/2005
CVE: CVE-2005-2086
BID: 14086
OSVDB: 17613
Background
phpBB is an open-source bulletin board package written in PHP.
Problem
This is a variant of an older vulnerability which allows remote command execution by requesting **viewtopic.php** with a specially crafted **highlight** parameter.
Resolution
Upgrade to the latest version of phpBB.
References
<http://archives.neohapsis.com/archives/bugtraq/2005-06/0256.html>
Related
nessus
nessus
FreeBSD : phpbb -- remote PHP code execution vulnerability (4afacca1-eb9d-11d9-a8bd-000cf18bbe54)
2005-07-13 00:00:00
GLSA-200507-03 : phpBB: Arbitrary command execution
2005-07-05 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200507-03 (phpBB)
2008-09-24 00:00:00
FreeBSD Ports: phpbb
2008-09-04 00:00:00
FreeBSD Ports: phpbb
2008-09-04 00:00:00
gentoo
gentoo
phpBB: Arbitrary command execution
2005-07-04 00:00:00
cve
cve
CVE-2005-2086
2005-07-05 04:00:00
freebsd
freebsd
phpbb -- remote PHP code execution vulnerability
2005-06-28 00:00:00
ubuntucve
ubuntucve
CVE-2005-2086
2005-07-05 00:00:00
saint
saint
phpBB viewtopic.php highlight parameter vulnerability
2005-12-28 00:00:00
phpBB viewtopic.php highlight parameter vulnerability
2005-12-28 00:00:00
phpBB viewtopic.php highlight parameter vulnerability
2005-12-28 00:00:00
canvas
canvas
Immunity Canvas: PHPBB_HIGHLIGHT
2005-07-05 04:00:00
dsquare
dsquare
Phpbb RCE
2012-01-26 00:00:00
packetstorm
packetstorm
phpBB viewtopic.php Arbitrary Code Execution
2009-12-31 00:00:00
phpBB viewtopic.php Arbitrary Code Execution
2009-10-30 00:00:00