PHP remote file inclusion vulnerability in blend_data/blend_common.php in Blend Portal 1.2.0, as used with phpBB when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. NOTE: This is a similar vulnerability to CVE-2006-2507.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phpbb-portal blend portal 1.2.0 |