CVE-2008-3416

SQL injection vulnerability in modules/members.php in IceBB before 1.0-rc9.3 allows remote attackers to execute arbitrary SQL commands via the username parameter in a members action to index.php, related to an incorrect protection mechanism in the clean_string function in includes/functions.php.
Configurations

Configuration 1

cpe:2.3:a:icebb:icebb:1.0:rc9.1:*:*:*:*:*:*
cpe:2.3:a:icebb:icebb:1.0:rc9.2:*:*:*:*:*:*
cpe:2.3:a:icebb:icebb:1.0:rc9:*:*:*:*:*:*

Information

Published : 2008-07-31 05:41

Updated : 2017-09-29 01:31


NVD link : CVE-2008-3416

Mitre link : CVE-2008-3416

Products Affected
No products.
CWE