2 matches found
CVE-2006-3799
DeluxeBB 1.07 and earlier allows remote attackers to bypass SQL injection protection mechanisms via the login variable and certain other variables, by using lowercase "union select" or possibly other statements that do not match the uppercase "UNION SELECT."...
CVE-2006-3799
CVE-2006-3799 affects DeluxeBB 1.07 and earlier. The issue: remote attackers can bypass SQL injection protection mechanisms in the login variable and similar variables by using lowercase “union select” (or other statements that don’t match uppercase “UNION SELECT”). This vulnerability is describe...