CVE-2006-1094

SQL injection vulnerability in Datenbank MOD 2.7 and earlier for Woltlab Burning Board allows remote attackers to execute arbitrary SQL commands via the fileid parameter to (1) info_db.php or (2) database.php.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:datenbank_module:datenbank_module:*:*:*:*:*:*:*:*
cpe:2.3:a:woltlab:burning_board:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:woltlab:burning_board:2.0_beta_3:*:*:*:*:*:*:*
cpe:2.3:a:woltlab:burning_board:2.0_beta_4:*:*:*:*:*:*:*
cpe:2.3:a:woltlab:burning_board:2.0_beta_5:*:*:*:*:*:*:*
cpe:2.3:a:woltlab:burning_board:2.0_rc1:*:*:*:*:*:*:*
cpe:2.3:a:woltlab:burning_board:2.0_rc2:*:*:*:*:*:*:*
cpe:2.3:a:woltlab:burning_board:2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:woltlab:burning_board:2.3.1:*:*:*:*:*:*:*
cpe:2.3:a:woltlab:burning_board:2.3.3:*:*:*:*:*:*:*
cpe:2.3:a:woltlab:burning_board:2.4:*:*:*:*:*:*:*
cpe:2.3:a:woltlab:burning_board:2.5:*:*:*:*:*:*:*
cpe:2.3:a:woltlab:burning_board:2.6:*:*:*:*:*:*:*
cpe:2.3:a:woltlab:burning_board:2.7:*:*:*:*:*:*:*

History

21 Nov 2024, 00:08

Type Values Removed Values Added
References () http://www.nukedx.com/?viewdoc=17 - () http://www.nukedx.com/?viewdoc=17 -
References () http://www.osvdb.org/23808 - () http://www.osvdb.org/23808 -
References () http://www.osvdb.org/23810 - () http://www.osvdb.org/23810 -
References () http://www.securityfocus.com/archive/1/426583 - Exploit () http://www.securityfocus.com/archive/1/426583 - Exploit
References () http://www.securityfocus.com/bid/16914 - () http://www.securityfocus.com/bid/16914 -

Information

Published : 2006-03-09 13:06

Updated : 2024-11-21 00:08


NVD link : CVE-2006-1094

Mitre link : CVE-2006-1094

CVE.ORG link : CVE-2006-1094


JSON object : View

Products Affected

woltlab

  • burning_board

datenbank_module

  • datenbank_module