PHP remote file inclusion vulnerability in footers.php in Epicdesigns tinyBB 0.3, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the tinybb_footers parameter. Successful exploitation requires that "register_globals" is enabled.
Publication date: Thu, 01 Jun 2006 15:02:00 +0000