2 matches found
CVE-2006-5390
PHP remote file inclusion vulnerability in includes/functionsmoduser.php in the ACP User Registration MMW 1.00 module for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter...
CVE-2006-5390
CVE-2006-5390 describes a PHP remote file inclusion vulnerability in the ACP User Registration (MMW) 1.00 module for phpBB. The flaw arises from insufficient sanitization of the phpbb_root_path parameter in includes/functions_mod_user.php, allowing an attacker to supply a URL and execute arbitrar...