CVE-2004-1966

2005-05-1004:00:00

mitre

www.cve.org

AI Score

8.5

Confidence

Low

EPSS

0.005

Percentile

76.5%

JSON

Multiple SQL injection vulnerabilities in Open Bulletin Board (OpenBB) 1.0.6 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) FID parameter in board.php, (2) sortorder, perpage, or id parameters in member.php, (3) forums parameter in search.php, or (4) PID or FID parameters in post.php.