CVE-2005-1615

2005-05-16T00:00:00
ID CVE-2005-1615
Type cve
Reporter NVD
Modified 2016-10-17T23:21:15

Description

viewforum.php in Ultimate PHP Board (UPB) 1.8 through 1.9.6 may allow remote attackers to read sensitive data via the postorder parameter, which is not properly handled by textdb.inc.php, possibly due to a SQL injection vulnerability.