CVE-2005-0661
The CVE-2005-0661 entry affects Woltlab Burning Board 2.0.3 through 2.3.0. A SQL injection risk exists in the getwbbuserdata function in session.php, exploitable via the (1) userid or (2) lastvisit cookies, enabling an attacker to execute arbitrary SQL commands. The NVD metrics indicate a high ba...