CVE-2006-0094

Properties

Published:
04.01.2006
Updated:
20.01.2006
Patch available:
Severity:
High
CVSS vector:
(AV:R/AC:L/Au:NR/C:P/I:P/A:P/B:N)
Product:
oaBoard: oaBoard

Vulnerability description

PHP remote file include vulnerability in forum.php in oaBoard 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the inc_stat parameter, a different vulnerability than CVE-2006-0076. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

References:

FRSIRT: http://www.frsirt.com/english/advisories/2006/0028
SECUNIA: http://secunia.com/advisories/17373