Security Advisory

CVE-2005-3420

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2005-11-01 21:00:00

Last updated 2024-08-07 23:10:08

Assigner mitre

State PUBLISHED

Description

usercp_register.php in phpBB 2.0.17 allows remote attackers to modify regular expressions and execute PHP code via the signature_bbcode_uid parameter, as demonstrated by injecting an "e" modifier into a preg_replace statement.

← Browse all CVEs View on cve.org ↗