Unrated severityNVD Advisory· Published Apr 25, 2007· Updated Jun 16, 2026
CVE-2007-2234
CVE-2007-2234
Description
include/common.php in PunBB 1.2.14 and earlier does not properly handle a disabled ini_get function when checking the register_globals setting, which allows remote attackers to register global parameters, as demonstrated by an SQL injection attack on the search_id parameter to search.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.