VULHUB ™

A vulnerability has been discovered in Cyboards PHP Lite. It is possible for an attacker to specify a location to include a PHP script used by the server. By supplying a malicious PHP script on an attacker-supplied host, it is possible to execute arbitrary PHP commands with the privileges of the target server.

A vulnerability has been discovered in Cyboards PHP Lite. It is possible for an attacker to specify a location to include a PHP script used by the server. By supplying a malicious PHP script on an attacker-supplied host, it is possible to execute arbitrary PHP commands with the privileges of the target server.