5 matches found
Sql injection
SQL injection vulnerability in forum.asp in W1L3D4 Philboard 1.14 and 1.2 allows remote attackers to execute arbitrary SQL commands via the forumid parameter. NOTE: this might overlap CVE-2008-2334, CVE-2008-1939, CVE-2007-2641, or CVE-2007-0920...
CVE-2008-5192
CVE-2008-5192 concerns a SQL injection vulnerability in forum.asp of W1L3D4 Philboard versions 1.14 and 1.2, exploitable via the forumid parameter. The root cause is an unsafely handled input for forumid that allows arbitrary SQL execution by an attacker. Connected records corroborate the vulnera...
CVE-2008-5192
SQL injection vulnerability in forum.asp in W1L3D4 Philboard 1.14 and 1.2 allows remote attackers to execute arbitrary SQL commands via the forumid parameter. NOTE: this might overlap CVE-2008-2334, CVE-2008-1939, CVE-2007-2641, or CVE-2007-0920...
Sql injection
Multiple SQL injection vulnerabilities in W1L3D4 Philboard 1.0 allow remote attackers to execute arbitrary SQL commands via the 1 id and 2 topic parameters to a philboardreply.asp, and the 3 forumid parameter to b philboardnewtopic.asp, different vectors than CVE-2007-2641 and CVE-2007-0920...
CVE-2007-2641
CVE-2007-2641: SQL injection in W1L3D4 Philboard 0.2 via the forumid parameter of W1L3D4_bolum.asp (and related forum pages) allows remote attackers to execute arbitrary SQL commands. The vulnerability affects the PHP/ASP-based W1L3D4 Philboard variants referenced in the record, with the vector d...