SQL injection vulnerability in the IP-Search functionality in the IP-Tracking Mod for phpBB 2.0.x allows remote authenticated administrators to execute arbitrary SQL commands via the Search Query field.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Ip-tracking | Phpbb | 2.0 | 2.0 |
Ip-tracking | Phpbb | 2.0.1 | 2.0.1 |
Ip-tracking | Phpbb | 2.0.4 | 2.0.4 |
Ip-tracking | Phpbb | 2.0.3 | 2.0.3 |
Ip-tracking | Phpbb | 2.0.9 | 2.0.9 |
Ip-tracking | Phpbb | 2.0.6 | 2.0.6 |
Ip-tracking | Phpbb | 2.0.5 | 2.0.5 |
Ip-tracking | Phpbb | 2.0.2 | 2.0.2 |
Ip-tracking | Phpbb | 2.0.7 | 2.0.7 |
Ip-tracking | Phpbb | 2.0.8 | 2.0.8 |