CVE-2006-5311

PHP remote file inclusion vulnerability in includes/archive/archive_topic.php in Buzlas 2006-1 Full allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.

Score7.5
Access VectorNETWORK
Access ComplexityLOW
AuthenticationNONE
Confidentiality ImpactPARTIAL
Integrity ImpactPARTIAL
Availability ImpactPARTIAL
Published2006-10-17 12:07:00.000-04
Last Modified2018-10-17 05:42:07.000-04

Vulnerable Software List

VendorProductVersions
Buzlas Buzlas 2006-1 full

References

SourceLink
SREASON1730
BUGTRAQ20061012 Buzlas <= v2006-1 Full Remote File Include Vulnerability
BID20511