Security Advisory
CVE-2006-5087
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Multiple PHP remote file inclusion vulnerabilities in evoBB 0.3 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the path parameter in (1) track.php or (2) connect.php.