Vulnerabilities > CVE-2007-0656 - Remote File Include vulnerability in PHPbb2-Modificat 0.1.0/0.2.0

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
phpbb2-modificat
exploit available

Summary

PHP remote file inclusion vulnerability in includes/functions.php in phpBB2-MODificat 0.2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.

Vulnerable Configurations

Part Description Count
Application
Phpbb2-Modificat
2

Exploit-Db

descriptionphpBB2 MODificat <= 0.2.0 (functions.php) Remote Include Vulnerability. CVE-2007-0656. Webapps exploit for php platform
fileexploits/php/webapps/3231.txt
idEDB-ID:3231
last seen2016-01-31
modified2007-01-30
platformphp
port
published2007-01-30
reporterMehmet Ince
sourcehttps://www.exploit-db.com/download/3231/
titlephpBB2 MODificat <= 0.2.0 functions.php Remote Include Vulnerability
typewebapps