3 matches found
Immunity Canvas: PUNBB_LANGEXEC
Name| punbblangexec ---|--- CVE| CVE-2006-5735 Exploit Pack| CANVAS Description| punbblangexec Notes| CVE Name: CVE-2006-5735 VENDOR: informer.com Repeatability: Infinite References: http://www.wargan.org/index.php/2006/10/29/4-punbb-1213-multiple-vulnerabilities CVE Url:...
CVE-2006-5735
PunBB does suffer a local file inclusion/traversal in include/common.php via the language parameter, enabling an authenticated user to influence register.php language storage. The vulnerability affects PunBB prior to version 1.2.14, with the exploit path described as including arbitrary local fil...
PunBB include/common.php language Parameter Local File Inclusion
The version of PunBB installed on the remote host fails to sanitize input to the 'language' parameter before storing it in the 'register.php' script as a user's preferred language setting. By registering with a specially crafted value, an attacker can leverage this issue to view arbitrary files a...