CVE-2006-3797
CVE-2006-3797 describes an SQL injection vulnerability in DeluxeBB 1.07 and earlier that lets remote attackers bypass authentication, spoof users, and modify settings via the (1) memberpw and (2) membercookie cookies. The issue enables manipulation of authentication-related flows and user setting...