Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2360


Vulnerability Score 7.5 7.5
CVE Id CVE-2006-2360
Last Modified 05 Sep 2008 05:04:19
Published 15 May 2006 12:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



SQL injection vulnerability in charts.php in the Chart mod for phpBB allows remote attackers to execute arbitrary SQL commands via the id parameter.

Vulnerable Systems


  • Phpbb Group Phpbb


BUGTRAQ - 20060512 Re: phpBB "charts.php" XSS and SQL-Injection

BUGTRAQ - 20060511 phpBB "charts.php" XSS and SQL-Injection

XF - phpbb-charts-sql-injection(26415)

BID - 17952

BUGTRAQ - 20060516 Re: phpBB "charts.php" XSS and SQL-Injection

Last Updated: 27 May 2016 10:42:26