PHP Remote File Inclusion Vulnerability in Auction Mod for phpBB
CVE-2006-2245

Currently unrated

Key Information:

Vendor

PHPbb Group

Status
PHPbb-auction
Vendor
CVE Published:
9 May 2006

What is CVE-2006-2245?

The Auction mod for phpBB contains a PHP remote file inclusion vulnerability in the auction_common.php file. This flaw allows remote attackers to execute arbitrary PHP code by manipulating the phpbb_root_path parameter. Exploiting this vulnerability could lead to unauthorized access and control over the affected systems, making it critical for users of the Auction mod to apply necessary security measures and updates.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.vupen.com/english/advisories/2006/1641
vdb-entryx_refsource_VUPEN
http://secunia.com/advisories/19944
third-party-advisoryx_refsource_SECUNIA
http://www.osvdb.org/25263
vdb-entryx_refsource_OSVDB

EPSS Score

9% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.