3 matches found
CVE-2008-6632
SQL injection vulnerability in func/login.php in MercuryBoard 1.1.5 and earlier allows remote attackers to execute arbitrary SQL commands via the User-Agent HTTP header $SERVER'HTTPUSERAGENT'...
CVE-2008-6632
SQL injection vulnerability in func/login.php in MercuryBoard 1.1.5 and earlier allows remote attackers to execute arbitrary SQL commands via the User-Agent HTTP header $SERVER'HTTPUSERAGENT'...
CVE-2008-6632
CVE-2008-6632 is a SQL injection vulnerability in MercuryBoard <=1.1.5, exploitable via the User-Agent header processed by func/login.php. The issue allows remote attackers to execute arbitrary SQL commands. Affected version information comes from the NVD/NVD-derived records, which specify Mer...