CVE-2006-3615 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2006-3615

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Multiple PHP remote file inclusion vulnerabilities in Phorum 5.1.14, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via unspecified vectors related to an uninitialized variable.

Affected Software

Name	Vendor	Start Version	End Version
Phorum	Phorum	5.1.14 (including)	5.1.14 (including)

References

http://archives.neohapsis.com/archives/bugtraq/2006-07/0191.html
http://archives.neohapsis.com/archives/bugtraq/2006-07/0200.html
http://retrogod.altervista.org/phorum5_local_incl_xpl.html
http://secunia.com/advisories/21043
http://www.osvdb.org/27164
http://www.osvdb.org/27167
http://www.phorum.org/phorum5/read.php?14%2C114358
http://www.vupen.com/english/advisories/2006/2794