Multiple SQL injection vulnerabilities in Project EROS bbsengine before bbsengine-20060429-1550-jam allow remote attackers to execute arbitrary SQL commands via (1) unspecified parameters in the php/comment.php and (2) the getpartialmatches method in php/aolbonics.php.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2006-06-29T01:00:00
Updated: 2017-07-19T15:57:01
Reserved: 2006-06-28T00:00:00
Link: CVE-2006-3307
JSON object: View
NVD Information
Status : Modified
Published: 2006-06-29T01:05:00.000
Modified: 2017-07-20T01:32:13.460
Link: CVE-2006-3307
JSON object: View
Redhat Information
No data.
CWE