SQL injection vulnerability in dosearch.php in UBB.threads 3.4.x allows remote attackers to execute arbitrary SQL statements via the Name parameter.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Ubb.threads | Ubbcentral | 3.4 (including) | 3.4 (including) |
Ubb.threads | Ubbcentral | 3.5 (including) | 3.5 (including) |