CVE-2005-3369

2005-10-30T09:34:00
ID CVE-2005-3369
Type cve
Reporter NVD
Modified 2017-07-10T21:33:11

Description

Multiple SQL injection vulnerabilities in the Info-DB module (info_db.php) in Woltlab Burning Board 2.7 and earlier allow remote attackers to execute arbitrary SQL commands and possibly upload files via the (1) fileid and (2) subkatid parameters.