CVE-2005-2028
MercuryBoard 1.1.4 and earlier is affected by a SQL injection in index.php where unsanitized User-Agent header data is used in a database query, allowing remote attackers to modify data or query the database. The issue is caused by using header content directly in SQL; exploits are described in C...