CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-7208

PHP remote file inclusion vulnerability in download.php in the Adam van Dongen Forum (com_forum) component (aka phpBB component) 1.2.4RC3 and earlier for Mambo allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.042

EPSS Ranking 88.2%

CVSS Severity

CVSS v2 Score 6.8

References

http://osvdb.org/45364
http://securityreason.com/securityalert/2836
http://www.securityfocus.com/archive/1/472005/100/0/threaded
https://www.exploit-db.com/exploits/1995
http://osvdb.org/45364
http://securityreason.com/securityalert/2836
http://www.securityfocus.com/archive/1/472005/100/0/threaded
https://www.exploit-db.com/exploits/1995

Products affected by CVE-2006-7208

Adam Van Dongen » Com Forum » Version: 1.2.4rc3

cpe:2.3:a:adam_van_dongen:com_forum:1.2.4rc3
Adam Van Dongen » Phpbb Component » Version: 1.2.4rc3

cpe:2.3:a:adam_van_dongen:phpbb_component:1.2.4rc3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-7208

Products

Pricing

Contact Us