Vulnerabilities > CVE-2006-5736 - SQL-Injection vulnerability in Punbb
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
SQL injection vulnerability in search.php in PunBB before 1.2.14, when the PHP installation is vulnerable to CVE-2006-3017, allows remote attackers to execute arbitrary SQL commands via the result_list array parameter, which is not initialized. Successful exploitation requires that "register_globals" is enabled. This vulnerability is addressed in the following product release: PunBB, PunBB, 1.2.14
Vulnerable Configurations
References
- http://securityreason.com/securityalert/1824
- http://securitytracker.com/id?1017131
- http://www.osvdb.org/30133
- http://www.punbb.org/changelogs/1.2.13_to_1.2.14.txt
- http://www.securityfocus.com/archive/1/450055/100/0/threaded
- http://www.vupen.com/english/advisories/2006/4256
- http://www.wargan.org/index.php/2006/10/29/4-punbb-1213-multiple-vulnerabilities