CVE-2007-1572

Name of the Vulnerable Software and Affected Versions JGBBS versions 3.0 Beta 1 and earlier

Description A SQL injection issue allows remote attackers to execute arbitrary SQL commands. The issue is exploited via the title parameter in the "search.asp" page.

Recommendations For JGBBS versions 3.0 Beta 1 and earlier, avoid using the title parameter in the "search.asp" page until a fix is available. As a temporary workaround, consider restricting access to the search functionality to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.