Advanced Electron Forum BBCode 'preg_replace' PHP Code Injection Vulnerabilities

Attackers can exploit this issue via a browser.

The following example was provided:
[email]{${phpinfo()}}[/email]


 

Privacy Statement
Copyright 2010, SecurityFocus