The-Lord-Of-Cracking

**Name of the Vulnerable Software and Affected Versions** MiniBB Forum version 2 **Description** The issue allows remote attackers to execute arbitrary code via a URL in the `pathToFiles` parameter in the index.php file. **Recommendations** For MiniBB Forum version 2, update the index.php file to properly validate and sanitize the `pathToFiles` parameter to prevent remote file inclusion attacks. As a temporary workaround, consider restricting access to the index.php file or disabling the `pathToFiles` parameter until a patch is available.