Description
PHP remote file inclusion vulnerability in includes/functions_user_viewed_posts.php in the Nivisec User Viewed Posts Tracker module 1.0 and earlier for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Vulnerability Information
- Product / Framework: Nivisec
- Vendor Domain: sourceforge.net
- Vulnerability Type: File Includion
- CVE Details: View Full CVE Details →