CVE-2002-0473
First published: Mon Aug 12 2002(Updated: )
db.php in phpBB 2.0 (aka phpBB2) RC-3 and earlier allows remote attackers to execute arbitrary code from remote servers via the phpbb_root_path parameter.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Phpbb Group Phpbb | =2.0_rc2 | |
| Phpbb Group Phpbb | =2.0_rc1 | |
| Phpbb Group Phpbb | =2.0_rc3 | |
| Phpbb Group Phpbb | =2.0_beta1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://online.securityfocus.com/archive/82/262600
- http://www.securityfocus.com/bid/4380
- http://www.iss.net/security_center/static/8476.php
- http://prdownloads.sourceforge.net/phpbb/phpBB-2.0.1.zip
- http://phpbb.sourceforge.net/phpBB2/viewtopic.php?t=9483
- http://archives.neohapsis.com/archives/bugtraq/2002-03/0221.html
- http://archives.neohapsis.com/archives/bugtraq/2002-03/0229.html
- http://www.osvdb.org/4268
- collector/nvd-historical
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/event
- agent/type
- agent/description
- agent/remedy
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/phpbb group
- canonical/phpbb group phpbb
- version/phpbb group phpbb/2.0_rc2
- version/phpbb group phpbb/2.0_rc1
- version/phpbb group phpbb/2.0_rc3
- version/phpbb group phpbb/2.0_beta1