CVE-2006-3955

N/A Unknown

Published: August 01, 2006 Modified: April 16, 2026

Description

Multiple PHP remote file inclusion vulnerabilities in MiniBB Forum 1.5a allow remote attackers to execute arbitrary PHP code via a URL in the absolute_path parameter to (1) news.php, (2) search.php, or (3) whosOnline.php.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://securityreason.com/securityalert/1315

Source: cve@mitre.org

http://securitytracker.com/id?1016557

Source: cve@mitre.org

Exploit

http://securitytracker.com/id?1016558

Source: cve@mitre.org

Exploit

http://www.osvdb.org/28674

Source: cve@mitre.org

http://www.osvdb.org/28675

Source: cve@mitre.org

http://www.osvdb.org/28676

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/440839/100/100/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/440875/100/100/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/19095

Source: cve@mitre.org

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/27905

Source: cve@mitre.org

http://securityreason.com/securityalert/1315