Vulnerabilities > CVE-2004-1966 - Unspecified vulnerability in Openbb

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
openbb
exploit available

Summary

Multiple SQL injection vulnerabilities in Open Bulletin Board (OpenBB) 1.0.6 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) FID parameter in board.php, (2) sortorder, perpage, or id parameters in member.php, (3) forums parameter in search.php, or (4) PID or FID parameters in post.php.

Exploit-Db

  • descriptionOpenBB 1.0.x post.php Multiple Parameter SQL Injection. CVE-2004-1966. Webapps exploit for php platform
    idEDB-ID:24059
    last seen2016-02-02
    modified2004-04-26
    published2004-04-26
    reporterJeiAr
    sourcehttps://www.exploit-db.com/download/24059/
    titleOpenBB 1.0.x post.php Multiple Parameter SQL Injection
  • descriptionOpenBB 1.0.x member.php Multiple Parameter SQL Injection. CVE-2004-1966. Webapps exploit for php platform
    idEDB-ID:24057
    last seen2016-02-02
    modified2004-04-26
    published2004-04-26
    reporterJeiAr
    sourcehttps://www.exploit-db.com/download/24057/
    titleOpenBB 1.0.x member.php Multiple Parameter SQL Injection
  • descriptionOpenBB 1.0.x search.php q Parameter SQL Injection. CVE-2004-1966. Webapps exploit for php platform
    idEDB-ID:24058
    last seen2016-02-02
    modified2004-04-26
    published2004-04-26
    reporterJeiAr
    sourcehttps://www.exploit-db.com/download/24058/
    titleOpenBB 1.0.x search.php q Parameter SQL Injection
  • descriptionOpenBB 1.0.x board.php FID Parameter SQL Injection. CVE-2004-1966. Webapps exploit for php platform
    idEDB-ID:24056
    last seen2016-02-02
    modified2004-04-26
    published2004-04-26
    reporterJeiAr
    sourcehttps://www.exploit-db.com/download/24056/
    titleOpenBB 1.0.x board.php FID Parameter SQL Injection