mirror of
https://github.com/0xMarcio/cve.git
synced 2026-03-24 22:50:30 +01:00
800 B
800 B
CVE-2005-3415
Description
phpBB 2.0.17 and earlier allows remote attackers to bypass protection mechanisms that deregister global variables by setting both a GET/POST/COOKIE (GPC) variable and a GLOBALS[] variable with the same name, which causes phpBB to unset the GLOBALS[] variable but not the GPC variable.
POC
Reference
Github
No PoCs found on GitHub currently.