CVE-2006-1097

Multiple cross-site scripting XSS vulnerabilities in Datenbank MOD 2.7 and earlier for Woltlab Burning Board allow remote attackers to inject arbitrary web script or HTML via the fileid parameter to 1 infodb.php or 2 database.php...

CVE-2006-1094

CVE-2006-1094 affects Woltlab Burning Board; the OpenVAS/NVD entries describe a SQL injection in the Database module. The vulnerable component is the Database module’s handling of the fileid parameter in info_db.php (and related database.php), which can allow remote SQL injection. The documents d...

CVE-2006-1097

Multiple cross-site scripting XSS vulnerabilities in Datenbank MOD 2.7 and earlier for Woltlab Burning Board allow remote attackers to inject arbitrary web script or HTML via the fileid parameter to 1 infodb.php or 2 database.php...

Woltlab Burning Board info_db.php multiple SQL injection

Woltlab Burning Board infodb.php multiple SQL injection -discovered by R Vendor: "Trooper" URL: www.wbbcoderforum.de Version: = 2.7 Type: SQL-injection Description: ------------------------ Info-DB is a very powerful and popular download-module with many features. Information:...