CVE-2008-2023
30.04.2008, 12:05
Multiple SQL injection vulnerabilities in PD9 Software MegaBBS 2.2 allow remote attackers to execute arbitrary SQL commands via the (1) invisible and (2) timeoffset parameters to profile/controlpanel.asp and the (3) attachmentid parameter to forums/attach-file.asp.
Vendor | Product | Version |
---|---|---|
pd9_software | megabbs | 2.2 |
𝑥
= Vulnerable software versions
References