CVE-2011-4066
04.11.2011, 21:55
SQL injection vulnerability in bbs/tb.php in Gnuboard 4.33.02 and earlier allows remote attackers to execute arbitrary SQL commands via the PATH_INFO.
| Vendor | Product | Version |
|---|---|---|
| sir | gnuboard | 𝑥 ≤ 4.33.02 |
| sir | gnuboard | 3.30 |
| sir | gnuboard | 3.31 |
| sir | gnuboard | 3.32 |
| sir | gnuboard | 3.33 |
| sir | gnuboard | 3.34 |
| sir | gnuboard | 3.35 |
| sir | gnuboard | 3.36 |
| sir | gnuboard | 3.37 |
| sir | gnuboard | 3.38 |
| sir | gnuboard | 3.39 |
| sir | gnuboard | 3.40 |
| sir | gnuboard | 4.31.03 |
𝑥
= Vulnerable software versions
References