Security Advisory

CVE-2006-5148

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-10-02 23:00:00

Last updated 2024-08-07 19:41:04

Assigner mitre

State PUBLISHED

Description

Multiple PHP remote file inclusion vulnerabilities in Forum82 2.5.2b and earlier allow remote attackers to execute arbitrary PHP code via a URL in the repertorylevel parameter including scripts in /forum/ including (1) search.php, (2) message.php, (3) member.php, (4) mail.php, (5) lostpassword.php, (6) gesfil.php, (7) forum82lib.php3, and other unspecified scripts.

← Browse all CVEs View on cve.org ↗