SQL injection vulnerability in mod.php in the datenbank module for phpBB allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| datenbank_module | datenbank_module | * |
Cross-site scripting (XSS) vulnerability in mod.php in the datenbank module for phpBB allows remote attackers to inject arbitrary web script or HTML via the id parameter.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| datenbank_module | datenbank_module | * |
SQL injection vulnerability in Datenbank MOD 2.7 and earlier for Woltlab Burning Board allows remote attackers to execute arbitrary SQL commands via the fileid parameter to (1) info_db.php or (2) database.php.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| woltlab | burning_board | 2.0_rc2 |
| woltlab | burning_board | 2.0_rc1 |
| woltlab | burning_board | 1.1.1 |
| woltlab | burning_board | 2.4 |
| woltlab | burning_board | 2.6 |
| woltlab | burning_board | 2.2.2 |
| woltlab | burning_board | 2.5 |
| woltlab | burning_board | 2.0_beta_5 |
| woltlab | burning_board | 2.3.1 |
| datenbank_module | datenbank_module | * |
| woltlab | burning_board | 2.7 |
| woltlab | burning_board | 2.3.3 |
| woltlab | burning_board | 2.0_beta_3 |
| woltlab | burning_board | 2.0_beta_4 |
Multiple cross-site scripting (XSS) vulnerabilities in Datenbank MOD 2.7 and earlier for Woltlab Burning Board allow remote attackers to inject arbitrary web script or HTML via the fileid parameter to (1) info_db.php or (2) database.php.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| datenbank_module | datenbank_module | mod_2.7 |