5 matches found
Sql injection
Multiple SQL injection vulnerabilities in cyberBB 0.6 allow remote authenticated users to execute arbitrary SQL commands via the 1 id parameter to showtopic.php and the 2 user parameter to profile.php...
CVE-2008-3718
Multiple SQL injection vulnerabilities in cyberBB 0.6 allow remote authenticated users to execute arbitrary SQL commands via the 1 id parameter to showtopic.php and the 2 user parameter to profile.php...
CVE-2008-3718
CVE-2008-3718 involves multiple SQL injection vulnerabilities in cyberBB 0.6. The issue allows remote authenticated users to execute arbitrary SQL commands via the (1) id parameter to show_topic.php and (2) user parameter to profile.php. The affected component is cyberBB 0.6; root cause is input-...
CVE-2008-3718
Multiple SQL injection vulnerabilities in cyberBB 0.6 allow remote authenticated users to execute arbitrary SQL commands via the 1 id parameter to showtopic.php and the 2 user parameter to profile.php...
cyberbb-sql.txt
Name : cyberBB v. 0.6 Multiply Remote SQL Injection Vulnerabilities Author : cOndemned Dark-Coders Greetz : Avantura, str0ke, ZaBeaTy, voo|doo, irk4z, and many, many more... Conditions : Magic quotes gpc = On & Off / User must be logged into source of /showtopic.php : 21. $id=$REQUEST'id'; 22. 23...