CVE-2005-2439
UseBB 0.5.1 and earlier contain an SQL injection via the search function when magic_quotes_gpc is disabled. The underlying issue is improper handling of user input in the search feature, enabling remote attackers to execute arbitrary SQL commands. No explicit exploitation details are provided her...