tinyBB <= 0.3 - Remote (Include / SQL Injection) Vulnerabilities

No description provided by source. tinyBB = 0.3 Multiple Remote Vulnerabilities Method found by nukedx, Contacts ICQ: 10072 MSN/Mail: [email protected] web: www.nukedx.com This exploits works on tinyBB = 0.3 Original advisory can be found at: http://www.nukedx.com/?viewdoc=33...

CVE-2006-2740

Multiple SQL injection vulnerabilities in Epicdesigns tinyBB 0.3 allow remote attackers to execute arbitrary SQL commands via the 1 q parameter in a forgot.php, and the 2 username and 3 password parameters in b login.php, and other unspecified vectors...

CVE-2006-2740

CVE-2006-2740 describes SQL injection vulnerabilities in the Epicdesigns tinyBB 0.3 package. The affected components are the login flow and forgot/password recovery vectors: specifically the (1) q parameter in forgot.php and the (2) username and (3) password parameters in login.php, plus other un...

CVE-2006-2739

CVE-2006-2739 is a PHP remote file inclusion vulnerability in the Epicdesigns tinyBB 0.3 package. When PHP register_globals is enabled, an attacker can cause arbitrary PHP code execution by exploiting the tinybb_footers parameter in footers.php. The public records describe the vulnerability and a...

tinyBB &lt;= 0.3 Remote (Include / SQL Injection) Vulnerabilities

No description provided by source. tinyBB = 0.3 Multiple Remote Vulnerabilities Method found by nukedx, Contacts ICQ: 10072 MSN/Mail: [email protected] web: www.nukedx.com This exploits works on tinyBB = 0.3 Original advisory can be found at: http://www.nukedx.com/?viewdoc=33...