Vulnerabilities > CVE-2005-0414 - SQL-Injection vulnerability in Mercuryboard 1.1.1

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
mercuryboard
exploit available
NVD
Published: 2005-04-27
Updated: 2017-07-11

Summary

SQL injection vulnerability in post.php for MercuryBoard 1.1.1 allows remote attackers to execute arbitrary SQL commands via a reply post action for index.php with (1) the t parameter or (2) the qu parameter.

Vulnerable Configurations

Part Description Count
Application
Mercuryboard
1

Exploit-Db

descriptionMercuryBoard <= 1.1.1 Working Sql Injection. CVE-2005-0414. Webapps exploit for php platform
idEDB-ID:814
last seen2016-01-31
modified2005-02-12
published2005-02-12
reporterZeelock
sourcehttps://www.exploit-db.com/download/814/
titleMercuryBoard <= 1.1.1 Working SQL Injection

References