CVE-2007-5688: SQL Injection
First published: Mon Oct 29 2007(Updated: )
Multiple SQL injection vulnerabilities in directory.php in the Multi-Forums (aka Multi Host Forum Pro) module 1.3.3, for phpBB and Invision Power Board (IPB or IP.Board), allow remote attackers to execute arbitrary SQL commands via the (1) go and (2) cat parameters.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Phpbb Phpbb | ||
| Sebflipper Multi-forums Module | =1.3.3 | |
| Invision Power Services Invision Power Board |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-historical
- collector/nvd-index
- agent/severity
- agent/references
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/description
- agent/event
- agent/type
- agent/author
- agent/weakness
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/phpbb
- canonical/phpbb phpbb
- vendor/sebflipper
- canonical/sebflipper multi-forums module
- version/sebflipper multi-forums module/1.3.3
- vendor/invision power services
- canonical/invision power services invision power board