CVE-2006-2896

FunkBoard CF0.71 - RCE

Title source: llm

Description

profile.php in FunkBoard CF0.71 allows remote attackers to change arbitrary passwords via a modified uid hidden form field in an Edit Profile action.

Exploits (1)

exploitdb WORKING POC VERIFIED
by ajann · htmlwebappsphp
https://www.exploit-db.com/exploits/1875

References (7)

Scores

EPSS 0.1288
EPSS Percentile 94.1%

Details

Status published
Products (1)
funkboard/funkboard cf0.71
Published Jun 07, 2006
Tracked Since Feb 18, 2026