2 matches found
CVE-2006-2152
PHP remote file inclusion vulnerability in admin/addentry.php in phpBB Advanced Guestbook 2.4.0 and earlier, when registerglobals is enabled, allows remote attackers to include arbitrary files via the phpbbrootpath parameter...
CVE-2006-2152
CVE-2006-2152 affects phpBB Advanced Guestbook 2.4.0 and earlier, where admin/addentry.php fails to sanitize input to the phpbb_root_path parameter before using it in PHP include(). This PHP remote file inclusion vulnerability arises when register_globals is enabled, allowing an unauthenticated a...