2522 matches found
PT-2001-2561 · Phpbb · Phpbb
Name of the Vulnerable Software and Affected Versions: phpBB versions 1.4.0 and earlier Description: The issue allows remote authenticated users to execute arbitrary PHP code via an invalid language value. This prevents the variables $l statsblock in prefs.php or $l privnotify in auth.php from...
vBulletin allows arbitrary code execution
OVERVIEW ======== vBulletin http://www.vbulletin.com is a commonly used web forum system written in PHP. One of its key features is use of templates, which allow the board administrator to dynamically modify the look of the board. vBulletin templates are parsed with the eval function. This could ...