2 matches found
CVE-2006-2507
CVE-2006-2507 affects Teake Nutma Foing 0.2.0–0.7.0 used with phpBB. The vulnerability is a PHP remote file inclusion via an unvalidated URL in the phpbb_root_path parameter in index.php, song.php, faq.php, list.php, gen_m3u.php, and playlist.php, allowing remote attackers to execute arbitrary PH...
CVE-2006-3045
Foing 0.7.0e and earlier contains a PHP remote file inclusion in manage_songs.php that allows an attacker to execute arbitrary PHP code via a URL provided to the foing_root_path parameter. The NVD entry lists a CVSSv2 base score of 7.5 (HIGH) with network attack vector and low complexity, no auth...