CVE-2006-1926 | Vulnerability Database | Aqua Security

SQL injection vulnerability in showtopic.php in ThWboard 2.84 beta 3 and earlier allows remote attackers to execute arbitrary SQL commands via the pagenum parameter.

Affected Software

Name	Vendor	Start Version	End Version
Thwboard	Thwboard	2.8_beta (including)	2.8_beta (including)
Thwboard	Thwboard	2.81_beta (including)	2.81_beta (including)
Thwboard	Thwboard	2.82_beta (including)	2.82_beta (including)
Thwboard	Thwboard	2.83_beta (including)	2.83_beta (including)
Thwboard	Thwboard	2.84_beta_3 (including)	2.84_beta_3 (including)

References

http://www.securityfocus.com/archive/1/431354/100/0/threaded
http://www.securityfocus.com/archive/1/436813/100/0/threaded
http://www.securityfocus.com/archive/1/436919/100/0/threaded
http://www.securityfocus.com/bid/17606
https://exchange.xforce.ibmcloud.com/vulnerabilities/25891
http://www.securityfocus.com/archive/1/431354/100/0/threaded
http://www.securityfocus.com/archive/1/436813/100/0/threaded
http://www.securityfocus.com/archive/1/436919/100/0/threaded
http://www.securityfocus.com/bid/17606
https://exchange.xforce.ibmcloud.com/vulnerabilities/25891

NVD	https://nvd.nist.gov/vuln/detail/CVE-2006-1926
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html