CVE-2006-0076

Properties

Published:
02.01.2006
Updated:
21.09.2006
Patch available:
Severity:
High
CVSS vector:
(AV:R/AC:L/Au:NR/C:P/I:P/A:P/B:N)
Product:
OaBoard: OaBoard

Vulnerability description

PHP remote file include vulnerability in forum.php in oaBoard 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the inc parameter.

References:

BUGTRAQ: http://www.securityfocus.com/archive/1/archive/1/420676/100/0/threaded
http://evuln.com/vulns/3/summary.html: http://evuln.com/vulns/3/summary.html
BID: http://www.securityfocus.com/bid/16105
BUGTRAQ: http://www.securityfocus.com/archive/1/archive/1/435371/100/0/threaded
BUGTRAQ: http://www.securityfocus.com/archive/1/archive/1/435859/100/0/threaded
SECTRACK: http://securitytracker.com/id?1016211