Secunia
Login
|
|
CVE Reference: CVE-2011-0443 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2011-0443 |
|
|
Description: SQL injection vulnerability in inc/tinybb-settings.php in tinyBB 1.2, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter in a profile action to index.php. NOTE: some of these details are obtained from third party information. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/64570 ST 1024949 SAID Secunia Advisory: SA42854 OSVDB 70394 EXPLOIT-DB http://www.exploit-db.com/exploits/15961 CONFIRM http://tinybb.net/forum/?page=thread&post=989525101 BID 45737 |
|
| Return to the previous page. |
