2 matches found
CVE-2006-2245
Summary of CVE-2006-2245 (CVE List: CVE-2006-2245) : Affected software is the Auction mod for phpBB (Auction mod 1.3m). The vulnerability resides in the file auction/auction_common.php, enabling a PHP remote file inclusion when an attacker supplies a URL in the phpbb_root_path parameter. This all...
CVE-2006-3940
CVE-2006-3940 concerns multiple SQL injection vulnerabilities in the phpbb-Auction package. The affected components, as described in the provided documents, allow remote attackers to execute arbitrary SQL commands via the following parameters: (1) ar in auction_room.php and (2) u in auction_store...