Remote Code Execution in phpBB 2.0 (phpBB2) RC-3 and earlier via phpbb_root_path parameter

Remote Code Execution in phpBB 2.0 (phpBB2) RC-3 and earlier via phpbb_root_path parameter

CVE-2002-0473 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

db.php in phpBB 2.0 (aka phpBB2) RC-3 and earlier allows remote attackers to execute arbitrary code from remote servers via the phpbb_root_path parameter.

Learn more about our Cis Benchmark Audit For Server Software.