phpBB 'viewtopic.php' Remote Code Execution Vulnerability

phpBB 'viewtopic.php' Remote Code Execution Vulnerability

The 'viewtopic.php' phpBB script is prone to a remote script-injection vulnerability because the application fails to properly sanitize user-supplied URI parameters before using them to construct dynamically generated web pages.

This issue may allow a remote attacker to execute arbitrary commands in the context of the webserver that is hosting the vulnerable software.