CVE-2006-3611

Phorum < 5.1.14 - Path Traversal

Title source: rule

Description

Directory traversal vulnerability in pm.php in Phorum 5 allows remote authenticated users to include and execute arbitrary local files via directory traversal sequences in the GLOBALS[template] parameter, as demonstrated by injecting PHP sequences into a log file, which is then included by pm.php.

Exploits (1)

exploitdb WORKING POC VERIFIED

by rgod · phpwebappsphp

https://www.exploit-db.com/exploits/2008

View Code ZIP pw:eip

References (4)

[Exploit] http://retrogod.altervista.org/phorum5_local_incl_xpl.html

[Various Sources] http://www.phorum.org/phorum5/read.php?14%2C114358

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/439976/100/0/threaded

[Third Party Advisory] http://www.vupen.com/english/advisories/2006/2794

Scores

EPSS 0.0272

EPSS Percentile 86.0%

Details

Status published

Products (50)

phorum/phorum 3.0.7

phorum/phorum 3.1

phorum/phorum 3.1.1

phorum/phorum 3.1.1_pre

phorum/phorum 3.1.1_rc2

phorum/phorum 3.1.1a

phorum/phorum 3.1.2

phorum/phorum 3.2

phorum/phorum 3.2.2

phorum/phorum 3.2.3

... and 40 more

Published Jul 18, 2006

Tracked Since Feb 18, 2026