CVE-2006-4564

2006-09-06T01:04:00
ID CVE-2006-4564
Type cve
Reporter cve@mitre.org
Modified 2017-07-20T01:33:00

Description

SQL injection vulnerability in Sources/ManageBoards.php in Simple Machines Forum 1.1 RC3 allows remote attackers to execute arbitrary SQL commands via the cur_cat parameter. Successful exploitation requires privileges to add a new board.