Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6518

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2007-6518
Last Modified 07 Mar 2011 10:03:06
Published 24 Dec 2007 03:46:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-6518

Summary

Multiple SQL injection vulnerabilities in search.php in WoltLab Burning Board (wBB) Lite 1.0.2 pl3e allow remote attackers to execute arbitrary SQL commands via the (1) showposts, (2) sortby, and (3) sortorder parameters.

Vulnerable Systems

Application

  • Woltlab Burning Board Lite 1.0.2

  • Woltlab Burning Board Lite 1.0.2 Pl3e


References

VUPEN - ADV-2007-4300

BID - 26973

BUGTRAQ - 20071220 Woltlab Burning Board 1.0.2 SQL-Injection Vulnerability

SECUNIA - 28188

XF - woltlab-search-sql-injection(39174)

OSVDB - 39497


Last Updated: 27 May 2016 10:46:31