PHP remote file inclusion vulnerability in includes/functions_mod_user.php in the ACP User Registration (MMW) 1.00 module for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
References
Configurations
History
No history.
Information
Published : 2006-10-18 19:07
Updated : 2024-02-28 11:01
NVD link : CVE-2006-5390
Mitre link : CVE-2006-5390
CVE.ORG link : CVE-2006-5390
JSON object : View
Products Affected
phpbb
- acp_user_registration_module
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')