CVE-2006-2739

Name of the Vulnerable Software and Affected Versions tinyBB version 0.3

Description The issue allows remote attackers to execute arbitrary PHP code via a URL in the tinybb footers parameter when register globals is enabled. This is a result of a remote file inclusion vulnerability in the footers.php file.

Recommendations For tinyBB version 0.3, consider disabling the register globals setting to prevent exploitation until a patch is available. Additionally, restrict access to the footers.php file to minimize the risk of arbitrary PHP code execution.