PHP remote file inclusion vulnerability in includes/common.php in the mx_modsdb 1.0.0 module for MxBB (aka MX-System) Portal allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Modsdb | Mxbb | 1.0.0 (including) | 1.0.0 (including) |
References
- http://secunia.com/advisories/23331
- http://www.vupen.com/english/advisories/2006/4983
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30858
- https://www.exploit-db.com/exploits/2921
- http://secunia.com/advisories/23331
- http://www.vupen.com/english/advisories/2006/4983
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30858
- https://www.exploit-db.com/exploits/2921