CVE-2006-5224

PHP remote file inclusion vulnerability in includes/logger_engine.php in Dimitri Seitz Security Suite IP Logger 1.0.0 in dwingmods for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.

Referenced by CVEs: CVE-2006-5325
Score7.5
Access VectorNETWORK
Access ComplexityLOW
AuthenticationNONE
Confidentiality ImpactPARTIAL
Integrity ImpactPARTIAL
Availability ImpactPARTIAL
Published2006-10-10 05:07:00.000-04
Last Modified2017-10-18 09:29:31.000-04

Vulnerable Software List

VendorProductVersions
Dimitri Seitz Security Suite Ip Logger 1.0.0

References

SourceLink
BID20370
VUPENADV-2006-3926
XFsecurity-suite-logger-file-include(29321)
EXPLOIT-DB2480