CVE-2007-3208
CRLF injection vulnerability in YaBB 2.1 allows remote attackers to obtain administrative access through requests to register.pl or profile.pl that write CRLF sequences to a .vars file; this may enable execution of arbitrary code. No patch/version details are provided in the supplied documents.