CVE-2006-5312

PHP remote file inclusion vulnerability in shoutbox.php in the Ajax Shoutbox 0.0.5 and earlier module for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.

Score7.5
Access VectorNETWORK
Access ComplexityLOW
AuthenticationNONE
Confidentiality ImpactPARTIAL
Integrity ImpactPARTIAL
Availability ImpactPARTIAL
Published2006-10-17 12:07:00.000-04
Last Modified2017-10-18 09:29:33.000-04

Vulnerable Software List

VendorProductVersions
Phpbb Ajax Shoutbox 0.0.5

References

SourceLink
XFphpbb-ajax-shoutbox-file-include(29510)
EXPLOIT-DB2532