Threat Encyclopedia



It indicates an attempt to exploit a remote command execution vulnerability in phpBB.

It has been reported that the viewtopic.php script of phpBB is affected by an SQL injection vulnerability which may allow remote command execution. This vulnerability is caused by improper sanitizing of user-supplied input for the highlight parameter of the affected script.

This is the vulnerability which is being exploited by Santy.A worm.

affected-products-logoAffected Products

Any unprotected phpBB version 2.0.10 and prior is vulnerable.


A remote attacker could execute arbitrary commands on the target system.

recomended-action-logoRecommended Actions

If a FortiGate with FortiOS 2.80 or above is used, select "Reset Server" as the default action for the signature.

Apply appropriate patches or upgrade the application to the latest non-vulnerable version.

CVE References