Back to search
CVE-2004-1966
Published: May 10, 2005
Modified: Aug 8, 2024
PUBLISHED
Description
Multiple SQL injection vulnerabilities in Open Bulletin Board (OpenBB) 1.0.6 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) FID parameter in board.php, (2) sortorder, perpage, or id parameters in member.php, (3) forums parameter in search.php, or (4) PID or FID parameters in post.php.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
openbb-multiplescripts-sql-injection(15964)
vdb-entry
x_refsource_XF
10214
vdb-entry
x_refsource_BID
20040425 Multiple Vulnerabilities In OpenBB
mailing-list
x_refsource_BUGTRAQ
11481
third-party-advisory
x_refsource_SECUNIA
1009935
vdb-entry
x_refsource_SECTRACK
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now