MidnightBSD

Advisories for datenbank_module

CVE-2005-1170 HIGH

SQL injection vulnerability in mod.php in the datenbank module for phpBB allows remote attackers to execute arbitrary SQL commands via the id parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
datenbank_module datenbank_module *
CVE-2005-1171 MEDIUM

Cross-site scripting (XSS) vulnerability in mod.php in the datenbank module for phpBB allows remote attackers to inject arbitrary web script or HTML via the id parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
datenbank_module datenbank_module *
CVE-2006-1094 HIGH

SQL injection vulnerability in Datenbank MOD 2.7 and earlier for Woltlab Burning Board allows remote attackers to execute arbitrary SQL commands via the fileid parameter to (1) info_db.php or (2) database.php.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
woltlab burning_board 2.0_rc2
woltlab burning_board 2.0_rc1
woltlab burning_board 1.1.1
woltlab burning_board 2.4
woltlab burning_board 2.6
woltlab burning_board 2.2.2
woltlab burning_board 2.5
woltlab burning_board 2.0_beta_5
woltlab burning_board 2.3.1
datenbank_module datenbank_module *
woltlab burning_board 2.7
woltlab burning_board 2.3.3
woltlab burning_board 2.0_beta_3
woltlab burning_board 2.0_beta_4
CVE-2006-1097 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in Datenbank MOD 2.7 and earlier for Woltlab Burning Board allow remote attackers to inject arbitrary web script or HTML via the fileid parameter to (1) info_db.php or (2) database.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
datenbank_module datenbank_module mod_2.7