VYPR
Unrated severityNVD Advisory· Published Aug 18, 2003· Updated Jun 16, 2026

CVE-2003-0559

CVE-2003-0559

Description

mainfile.php in phpforum 2 RC-1, and possibly earlier versions, allows remote attackers to execute arbitrary PHP code by modifying the MAIN_PATH parameter to reference a URL on a remote web server that contains the code.

Affected products

2
  • Phpforum/Phpforum2 versions
    cpe:2.3:a:phpforum:phpforum:2.0_rc1:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:phpforum:phpforum:2.0_rc1:*:*:*:*:*:*:*
    • (no CPE)range: <= 2 RC-1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.