Vulnerabilities > CVE-2006-2050 - Input Validation vulnerability in Dcscripts Dcforumlite 3.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
SQL injection vulnerability in dcboard.cgi in DCScripts DCForumLite 3.0 allows remote attackers to execute arbitrary SQL commands via the az parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Statements
contributor | Joshua Bressers |
lastmodified | 2008-05-08 |
organization | Red Hat |
statement | Red Hat does not consider this to be a security issue. The FastCGI server is local trusted code and not under the control of an attacker, no trust boundary is crossed. For more information please see: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2008-2050 |