Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1926

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-1926
Last Modified 05 Sep 2008 05:03:12
Published 20 Apr 2006 02:06:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-1926

Summary

SQL injection vulnerability in showtopic.php in ThWboard 2.84 beta 3 and earlier allows remote attackers to execute arbitrary SQL commands via the pagenum parameter.

Vulnerable Systems

Application

  • Thwboard 2.8 Beta

  • Thwboard 2.81 Beta

  • Thwboard 2.82 Beta

  • Thwboard 2.83 Beta

  • Thwboard 2.84 Beta 3


References

BID - 17606

BUGTRAQ - 20060419 ThWboard <= 3 Beta 2.84 SQL Injection

XF - thwboard-showtopic-sql-injection(25891)

BUGTRAQ - 20060613 Re: BUGTRAQ:20060611 ThWboard 3.0 <= SQL Injection

BUGTRAQ - 20060611 ThWboard 3.0 <= SQL Injection


Last Updated: 27 May 2016 10:42:16