First published: Sun Apr 24 2005(Updated: )
Multiple SQL injection vulnerabilities in phpbb-Auction allow remote attackers to execute arbitrary SQL commands via the (1) u parameter to auction_rating.php or (2) ar parameter to action_offer.php.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Phpbb Group Phpbb-auction | =1.2m | |
Phpbb Group Phpbb-auction | =1.0m |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.