3 matches found
CVE-2014-2339
CVE-2014-2339 concerns GNUboard 5.x (and possibly earlier) with multiple SQL injection vulnerabilities in the file bbs/ajax.autosave.php . The flaws allow remote authenticated users to execute arbitrary SQL commands via the parameters subject or content . Exploitation is documented in multiple so...
GNUBoard 4.3x - ajax.autosave.php Multiple SQL Injections
GNUBoard 4.3x - ajax.autosave.php Multiple SQL Injections source: https://www.securityfocus.com/bid/66228/info GNUboard is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data. A successful exploit may allow an attacker to compromise the...
GNUboard SQL Injection
========================== Advisory: GNUboard SQL Injection Vulnerability Author: [email protected] Affected Version: GNUboard5the latest version Vendor URL: http://sir.co.kr/ Vendor Status: UnfixedI know little about Korean,so i do not know how to describe this vul to the vendor...