X666

**Name of the Vulnerable Software and Affected Versions** Woltlab Burning Board (wBB) versions 2.x **Description** A SQL injection issue exists, allowing remote attackers to execute arbitrary SQL commands. This is achieved by manipulating the array index of the `applicationids` array in the usergroups.php file. **Recommendations** For Woltlab Burning Board (wBB) versions 2.x, update to a version that includes a fix for this issue, as using the vulnerable version poses a significant risk. At the moment, there is no information about a newer version that contains a fix for this vulnerability.