PT-2007-4162 · Phpbb · Phpbb

Cornelius Riemenschneider

Publicado

2007-05-24

Atualizado

2018-10-16

CVE-2007-2858

CVSS v2.0

6.5

Média

Vetor

AV:N/AC:L/Au:S/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions phpBB versions 2.0.x

Description The issue concerns a SQL injection vulnerability in the IP-Search functionality of the IP-Tracking Mod. This vulnerability allows remote authenticated administrators to execute arbitrary SQL commands by manipulating the Search Query field.

Recommendations For phpBB versions 2.0.x, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2007-2858

Produtos afetados

Phpbb

PT-2007-4162 · Phpbb · Phpbb

CVE-2007-2858

Identificadores relacionados

Produtos afetados

Referências · 5