2 matches found
Sql injection
SQL injection vulnerability in mb.cgi in Cholod MySQL Based Message Board allows remote attackers to execute arbitrary SQL commands via unspecified vectors in a showmessage action, possibly the username parameter. NOTE: the provenance of this information is unknown; the details are obtained from...
CVE-2006-1395
The CVE-2006-1395 entry concerns a SQL injection vulnerability in mb.cgi of the Cholod MySQL Based Message Board. The issue allows remote attackers to execute arbitrary SQL commands via unspecified vectors in a showmessage action (possibly via the username parameter), with CVSS considerations ind...