CVE-2007-0388

SQL injection vulnerability in search.php in Woltlab Burning Board (wBB) 1.0.2 and earlier, and 2.3.6 and earlier in the 2.x series, allows remote attackers to execute arbitrary SQL commands via the boardids[1] and other boardids[] parameters.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:woltlab:burning_board:*:*:*:*:*:*:*:*
cpe:2.3:a:woltlab:burning_board:*:*:*:*:*:*:*:*

History

21 Nov 2024, 00:25

Type Values Removed Values Added
References () http://osvdb.org/33872 - () http://osvdb.org/33872 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/31550 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/31550 -
References () https://www.exploit-db.com/exploits/3143 - () https://www.exploit-db.com/exploits/3143 -
References () https://www.exploit-db.com/exploits/3144 - () https://www.exploit-db.com/exploits/3144 -

Information

Published : 2007-01-19 23:28

Updated : 2024-11-21 00:25


NVD link : CVE-2007-0388

Mitre link : CVE-2007-0388

CVE.ORG link : CVE-2007-0388


JSON object : View

Products Affected

woltlab

  • burning_board