Vulnerability Details CVE-2007-6518
Multiple SQL injection vulnerabilities in search.php in WoltLab Burning Board (wBB) Lite 1.0.2 pl3e allow remote attackers to execute arbitrary SQL commands via the (1) showposts, (2) sortby, and (3) sortorder parameters.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.0%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/28188
- http://www.osvdb.org/39497
- http://www.securityfocus.com/archive/1/485408/100/0/threaded
- http://www.securityfocus.com/bid/26973
- http://www.vupen.com/english/advisories/2007/4300
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39174
- http://secunia.com/advisories/28188
- http://www.osvdb.org/39497
- http://www.securityfocus.com/archive/1/485408/100/0/threaded
- http://www.securityfocus.com/bid/26973
- http://www.vupen.com/english/advisories/2007/4300
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39174
Products affected by CVE-2007-6518
-
cpe:2.3:a:woltlab:burning_board_lite:1.0.2
-
cpe:2.3:a:woltlab:burning_board_lite:1.0.2_pl3e