CVE-2006-3797

2006-07-24T12:19:00
ID CVE-2006-3797
Type cve
Reporter cve@mitre.org
Modified 2018-10-17T21:30:00

Description

SQL injection vulnerability in DeluxeBB 1.07 and earlier allows remote attackers to bypass authentication, spoof users, and modify settings via the (1) memberpw and (2) membercookie cookies.