CVE-2006-2360

Name of the Vulnerable Software and Affected Versions phpBB Chart mod (affected versions not specified)

Description The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting the id parameter in the charts.php file of the Chart mod for phpBB.

Recommendations For the Chart mod of phpBB, consider restricting access to the charts.php file until a patch is available. As a temporary workaround, avoid using the id parameter in the vulnerable charts.php file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.