phpBB viewtopic.php highlight parameter vulnerabilityAdded: 12/28/2005
BackgroundphpBB is an open-source bulletin board package written in PHP.
ProblemThis is a variant of an older vulnerability which allows remote command execution by requesting viewtopic.php with a specially crafted highlight parameter.
ResolutionUpgrade to the latest version of phpBB.
Back to exploit index