CVE Vulnerabilities

CVE-2007-1518

Published: Mar 20, 2007 | Modified: Oct 16, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

SQL injection vulnerability in usergroups.php in Woltlab Burning Board (wBB) 2.x allows remote attackers to execute arbitrary SQL commands via the array index of the applicationids array.

Affected Software

Name Vendor Start Version End Version
Burning_board Woltlab 2.4 2.4
Burning_board Woltlab 2.3.2 2.3.2
Burning_board Woltlab 2.2.1 2.2.1
Burning_board Woltlab 2.1.5 2.1.5
Burning_board Woltlab 2.7 2.7
Burning_board Woltlab 2.2.3 2.2.3
Burning_board Woltlab 2.0_beta_4 2.0_beta_4
Burning_board Woltlab 2.2.2 2.2.2
Burning_board Woltlab 2.0 2.0
Burning_board Woltlab 2.3.4 2.3.4
Burning_board Woltlab 2.3.0 2.3.0
Burning_board Woltlab 2.3.6 2.3.6
Burning_board Woltlab 2.3.3 2.3.3
Burning_board Woltlab 2.3.1 2.3.1
Burning_board Woltlab 2.0.3 2.0.3
Burning_board Woltlab 2.0_beta_3 2.0_beta_3
Burning_board Woltlab 2.5 2.5
Burning_board Woltlab 2.3.5 2.3.5
Burning_board Woltlab 2.6 2.6
Burning_board Woltlab 2.0_rc1 2.0_rc1
Burning_board Woltlab 2.0_beta_5 2.0_beta_5
Burning_board Woltlab 2.1.6 2.1.6
Burning_board Woltlab 2.0_rc2 2.0_rc2

References