Description
PHP remote file inclusion vulnerability in includes/openid/Auth/OpenID/BBStore.php in phpBB Openid 0.2.0 allows remote attackers to execute arbitrary PHP code via a URL in the openid_root_path parameter.
Vulnerability Information
- Product / Framework: Phpbb
- Vendor Domain: www.phpbb.com
- Vulnerability Type: Code Injection
- CVE Details: View Full CVE Details →