Description

SQL injection vulnerability in privmsg.php in phpBB 2.0.3 and earlier allows remote attackers to execute arbitrary SQL commands via the mark[] parameter.

Remediation

References

CVE-2003-1530

Related Vulnerabilities

MySQL CVE-2016-0668 Vulnerability (CVE-2016-0668)

Claroline Other Vulnerability (CVE-2006-2284)

Oracle Application Server Improper Authentication Vulnerability (CVE-2002-0563)

Atlassian Confluence Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2019-3394)

WordPress Plugin WP Background Takeover Directory Traversal (4.1.4)

Severity

High

Classification

CVE-2003-1530 CWE-138

Tags

Missing Update Known Vulnerabilities