Vulnerabilities > CVE-2006-2151 - Unspecified vulnerability in PHPbb Group PHPbb Toplist
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN phpbb-group
exploit available
Summary
PHP remote file inclusion vulnerability in toplist.php in phpBB TopList 1.3.8 and earlier, when register_globals is enabled, allows remote attackers to include arbitrary files via the phpbb_root_path parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
description TopList <= 1.3.8 (phpBB Hack) Remote File Inclusion Vulnerability. CVE-2006-2151. Webapps exploit for php platform file exploits/php/webapps/1722.txt id EDB-ID:1722 last seen 2016-01-31 modified 2006-04-27 platform php port published 2006-04-27 reporter [Oo] source https://www.exploit-db.com/download/1722/ title TopList <= 1.3.8 phpBB Hack Remote File Inclusion Vulnerability type webapps description TopList <= 1.3.8 (phpBB Hack) Remote Inclusion Exploit. CVE-2006-2151. Webapps exploit for php platform file exploits/php/webapps/1724.pl id EDB-ID:1724 last seen 2016-01-31 modified 2006-04-28 platform php port published 2006-04-28 reporter FOX_MULDER source https://www.exploit-db.com/download/1724/ title TopList <= 1.3.8 phpBB Hack Remote Inclusion Exploit type webapps
References
- http://secunia.com/advisories/19884
- http://secunia.com/advisories/19884
- http://www.osvdb.org/25260
- http://www.osvdb.org/25260
- http://www.vupen.com/english/advisories/2006/1601
- http://www.vupen.com/english/advisories/2006/1601
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26172
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26172
- https://www.exploit-db.com/exploits/1722
- https://www.exploit-db.com/exploits/1722
- https://www.exploit-db.com/exploits/1724
- https://www.exploit-db.com/exploits/1724