Vulnerabilities > CVE-2006-1926 - SQL Injection vulnerability in ThWboard Showtopic.PHP

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

thwboard

exploit available

NVD

Published: 2006-04-20

Updated: 2018-10-18

Summary

SQL injection vulnerability in showtopic.php in ThWboard 2.84 beta 3 and earlier allows remote attackers to execute arbitrary SQL commands via the pagenum parameter.

Vulnerable Configurations

Part	Description	Count
Application	Thwboard Thwboard Thwboard 2.8_Beta Thwboard Thwboard 2.81_Beta Thwboard Thwboard 2.82_Beta Thwboard Thwboard 2.83_Beta Thwboard Thwboard 2.84_Beta_3	5

Exploit-Db

description	ThWboard 2.8 Showtopic.PHP SQL Injection Vulnerability. CVE-2006-1926. Webapps exploit for php platform
id	EDB-ID:27687
last seen	2016-02-03
modified	2006-04-19
published	2006-04-19
reporter	Qex
source	https://www.exploit-db.com/download/27687/
title	ThWboard 2.8 Showtopic.PHP SQL Injection Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References