Security Advisory

CVE-2006-1896

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-04-20 10:00:00

Last updated 2024-08-07 17:27:29

Assigner mitre

State PUBLISHED

Description

Unspecified vulnerability in phpBB allows remote authenticated users with Administration Panel access to execute arbitrary PHP code via crafted Font Colour 3 ($theme[fontcolor3] variable) and/or signature values, possibly involving the highlight functionality. NOTE: the original report does not clarify whether this issue is static code injection, eval injection, or another type of vulnerability.

← Browse all CVEs View on cve.org ↗