CVE Vulnerabilities

CVE-2004-1864

Published: Mar 26, 2004 | Modified: Apr 29, 2021
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

SQL injection vulnerability in Extreme Messageboard (XMB) 1.9 beta allows remote attackers to execute arbitrary SQL commands via the restrict parameter to (1) member.php, (2) misc.php, or (3) today.php.

Affected Software

Name Vendor Start Version End Version
Xmb Xmb_forum 1.8_sp3 1.8_sp3
Xmb Xmb_forum 1.9_beta 1.9_beta

References