Vulnerabilities > CVE-2006-5610 - Remote Security vulnerability in Fully Modded PHPbb Fully Modded PHPbb 2021.4.40

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

fully-modded-phpbb

NVD

Published: 2006-10-31

Updated: 2008-09-05

Summary

PHP remote file inclusion vulnerability in player/includes/common.php in Teake Nutma Foing, as modified in Fully Modded phpBB (phpbbfm) 2021.4.40, allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.

Vulnerable Configurations

Part	Description	Count
Application	Fully_Modded_Phpbb Fully Modded Phpbb Fully Modded Phpbb 2021.4.40	1

References

http://secunia.com/advisories/22499