CVE-2008-1171 in 123 Flash Chat Moduleinfo

Zusammenfassung

von VulDB • 04.07.2026

** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in the 123 Flash Chat Module for phpBB allow remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter to (1) 123flashchat.php and (2) phpbb_login_chat.php. NOTE: CVE disputes this issue because $phpbb_root_path is explicitly set to "./" in both programs.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservieren

05.03.2008

Veröffentlichung

05.03.2008

Moderieren

akzeptiert

Eintrag

VDB-41348

CPE

bereit

EPSS

0.01129

KEV

nein

Aktivitäten

very low

Quellen

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!