CVE-2008-5434

Multiple SQL injection vulnerabilities in PunBB 1.3 and 1.3.1 allow remote authenticated administrators to execute arbitrary SQL commands via the (1) order_by or (2) direction parameter to admin/users.php, or (3) configuration options to admin/settings.php.
Configurations

Configuration 1

cpe:2.3:a:punbb:punbb:1.3.1:*:*:*:*:*:*:*
cpe:2.3:a:punbb:punbb:1.3:*:*:*:*:*:*:*

Information

Published : 2008-12-11 03:30

Updated : 2017-08-08 01:33


NVD link : CVE-2008-5434

Mitre link : CVE-2008-5434

Products Affected
No products.
CWE