PHP remote file inclusion vulnerability in includes/not_mem.php in the Add Name module for PHP allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
References
Link | Resource |
---|---|
http://securityreason.com/securityalert/2450 | Exploit Third Party Advisory |
http://www.securityfocus.com/archive/1/448630/100/0/threaded | Exploit Third Party Advisory VDB Entry |
http://www.securityfocus.com/bid/20516 | Third Party Advisory VDB Entry |
https://exchange.xforce.ibmcloud.com/vulnerabilities/29595 | Third Party Advisory VDB Entry |
Configurations
History
29 Mar 2021, 14:36
Type | Values Removed | Values Added |
---|---|---|
References | (XF) https://exchange.xforce.ibmcloud.com/vulnerabilities/29595 - Third Party Advisory, VDB Entry | |
References | (SREASON) http://securityreason.com/securityalert/2450 - Exploit, Third Party Advisory | |
References | (BUGTRAQ) http://www.securityfocus.com/archive/1/448630/100/0/threaded - Exploit, Third Party Advisory, VDB Entry | |
References | (BID) http://www.securityfocus.com/bid/20516 - Third Party Advisory, VDB Entry | |
CVSS |
v2 : v3 : |
v2 : 7.5
v3 : unknown |
CPE | cpe:2.3:a:phpbb:phpbb:-:*:*:*:*:*:*:* |
Information
Published : 2007-03-20 10:19
Updated : 2023-12-10 10:40
NVD link : CVE-2006-7168
Mitre link : CVE-2006-7168
CVE.ORG link : CVE-2006-7168
JSON object : View
Products Affected
phpbb
- phpbb
CWE