CVE-2006-6593
phpBB AMAZONIA MOD - Remote File Inclusion via zufallscodepart.php phpbb_root_path Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2006-6593. PoCs published by Nima Salehi.
AI-analyzed exploit summary This exploit targets a remote file include vulnerability in Amazonia Mod for phpBB forums. It allows an attacker to include a remote shell script and execute arbitrary commands on the target system.
Description
PHP remote file inclusion vulnerability in zufallscodepart.php in AMAZONIA MOD for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Nima Salehi · perlwebappsphp
https://www.exploit-db.com/exploits/2544
This exploit targets a remote file include vulnerability in Amazonia Mod for phpBB forums. It allows an attacker to include a remote shell script and execute arbitrary commands on the target system.
Classification
Working Poc 95%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target:
Amazonia Mod for phpBB forums
No auth needed
Prerequisites:
Network access to the target · Remote shell script hosted on an attacker-controlled server
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/20526
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/448644/100/0/threaded
Third Party Advisory third-party-advisory
x_refsource_sreason
http://securityreason.com/securityalert/2038
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/29566
Scores
EPSS
0.0230
EPSS Percentile
81.0%
Details
Status
published
Products (1)
phpbb/amazonia_mod
Published
Dec 15, 2006
Tracked Since
Feb 18, 2026