Multiple SQL injection vulnerabilities in Joels Bulletin board (JBB) 0.9.9rc3 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) nr parameter in topiczeigen.php, (2) forum and (3) zeigeseite parameters in showforum.php, (4) forum parameter in newtopic.php, and (5) tidnr parameter in neuerbeitrag.php.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2005-11-29T11:00:00
Updated: 2006-04-04T09:00:00
Reserved: 2005-11-29T00:00:00
Link: CVE-2005-3871
JSON object: View
NVD Information
Status : Modified
Published: 2005-11-29T11:03:00.000
Modified: 2011-03-08T02:27:18.470
Link: CVE-2005-3871
JSON object: View
Redhat Information
No data.
CWE