Vulnerabilities > CVE-2006-2151 - Remote Security vulnerability in Phpbb Toplist
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
PHP remote file inclusion vulnerability in toplist.php in phpBB TopList 1.3.8 and earlier, when register_globals is enabled, allows remote attackers to include arbitrary files via the phpbb_root_path parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description TopList <= 1.3.8 (phpBB Hack) Remote File Inclusion Vulnerability. CVE-2006-2151. Webapps exploit for php platform file exploits/php/webapps/1722.txt id EDB-ID:1722 last seen 2016-01-31 modified 2006-04-27 platform php port published 2006-04-27 reporter [Oo] source https://www.exploit-db.com/download/1722/ title TopList <= 1.3.8 phpBB Hack Remote File Inclusion Vulnerability type webapps description TopList <= 1.3.8 (phpBB Hack) Remote Inclusion Exploit. CVE-2006-2151. Webapps exploit for php platform file exploits/php/webapps/1724.pl id EDB-ID:1724 last seen 2016-01-31 modified 2006-04-28 platform php port published 2006-04-28 reporter FOX_MULDER source https://www.exploit-db.com/download/1724/ title TopList <= 1.3.8 phpBB Hack Remote Inclusion Exploit type webapps