CVE-2011-0443 in tinybbinformation

Résumé (Anglaise)

SQL injection vulnerability in inc/tinybb-settings.php in tinyBB 1.2, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter in a profile action to index.php. NOTE: some of these details are obtained from third party information.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Réserver

12/01/2011

Divulgation

12/01/2011

Statut

Confirmé

Entrées

VulDB provides additional information and datapoints for this CVE:

IDVulnérabilitéCWEExpConCVE
56035tinybb index.php injection SQL89Preuve de conceptNon définiCVE-2011-0443

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

Sources

PrécédentAperçuSuivant