CVE-2006-1896

Name of the Vulnerable Software and Affected Versions phpBB (affected versions not specified)

Description The issue allows remote authenticated users with Administration Panel access to execute arbitrary PHP code. This can be achieved by crafting specific values, such as Font Colour 3, which is associated with the theme[fontcolor3] variable, and/or signature values. The vulnerability might involve the highlight functionality, although the exact nature of the issue, whether it is static code injection, eval injection, or another type, is not clearly specified.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.