Vulnerabilities > CVE-2007-0812 - Unspecified vulnerability in Woltlab Burning Board Lite
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN woltlab
exploit available
Summary
SQL injection vulnerability in pms.php in Woltlab Burning Board (wBB) Lite 1.0.2pl3e and earlier allows remote authenticated users to execute arbitrary SQL commands via the pmid[0] parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 4 |
Exploit-Db
| description | Woltlab Burning Board Lite <= 1.0.2pl3e (pms.php) SQL Injection Exploit. CVE-2007-0812. Webapps exploit for php platform |
| file | exploits/php/webapps/3262.php |
| id | EDB-ID:3262 |
| last seen | 2016-01-31 |
| modified | 2007-02-03 |
| platform | php |
| port | |
| published | 2007-02-03 |
| reporter | rgod |
| source | https://www.exploit-db.com/download/3262/ |
| title | Woltlab Burning Board Lite <= 1.0.2pl3e pms.php SQL Injection Exploit |
| type | webapps |
References
- http://osvdb.org/32034
- http://osvdb.org/32034
- http://secunia.com/advisories/24027
- http://secunia.com/advisories/24027
- http://www.securityfocus.com/bid/22415
- http://www.securityfocus.com/bid/22415
- http://www.vupen.com/english/advisories/2007/0491
- http://www.vupen.com/english/advisories/2007/0491
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32172
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32172
- https://www.exploit-db.com/exploits/3262
- https://www.exploit-db.com/exploits/3262