CVE-2006-4279
XennoBB 2.2.1 (and earlier) contains an SQL injection in topic_post.php that can be exploited via the icon_topic parameter, enabling remote arbitrary SQL execution. The issue is documented in CVE-2006-4279 with CVSS v2 base score 7.5 ( HIGH ), reflecting NETWORK attack vector, LOW access complexi...