CVE-2006-2735

Name of the Vulnerable Software and Affected Versions Activity MOD Plus (Amod) version 1.1.0

Description The issue allows remote attackers to execute arbitrary PHP code via a URL in the phpbb root path parameter when register globals is enabled. This is similar to a previously identified issue.

Recommendations For Activity MOD Plus (Amod) version 1.1.0, consider disabling the register globals setting to mitigate the risk of exploitation. Additionally, restrict access to the lang activity.php file to minimize the risk of arbitrary PHP code execution.