CVE-2006-2405
CVE-2006-2405 affects Unclassified NewsBoard (UNB) 1.6.1 patch 1 and earlier. A directory traversal flaw in unb_lib/abbc.conf.php allows remote inclusion of arbitrary files when register_globals is enabled, via dot-dot sequences and a trailing null byte (%00) in ABBC[Config][smileset] sent to unb...