Security Advisory

CVE-2007-5009

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2007-09-20 21:00:00

Last updated 2024-08-07 15:17:28

Assigner mitre

State PUBLISHED

Description

PHP remote file inclusion vulnerability in language/lang_german/lang_main_album.php in phpBB Plus 1.53, and 1.53a before 20070922, allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.

← Browse all CVEs View on cve.org ↗