Описание
SQL injection vulnerability in DeluxeBB 1.07 and earlier allows remote attackers to bypass authentication, spoof users, and modify settings via the (1) memberpw and (2) membercookie cookies.
SQL injection vulnerability in DeluxeBB 1.07 and earlier allows remote attackers to bypass authentication, spoof users, and modify settings via the (1) memberpw and (2) membercookie cookies.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-3797
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27835
- http://lists.grok.org.uk/pipermail/full-disclosure/2006-July/047989.html
- http://securityreason.com/securityalert/1254
- http://www.securityfocus.com/archive/1/440435/100/0/threaded
- http://www.securityfocus.com/bid/19052
EPSS
Процентиль: 78%
0.01111
Низкий
CVE ID
Связанные уязвимости
nvd
больше 19 лет назад
SQL injection vulnerability in DeluxeBB 1.07 and earlier allows remote attackers to bypass authentication, spoof users, and modify settings via the (1) memberpw and (2) membercookie cookies.
EPSS
Процентиль: 78%
0.01111
Низкий