Description

SQL injection vulnerability in privmsg.php in phpBB 2.0.3 and earlier allows remote attackers to execute arbitrary SQL commands via the mark[] parameter.

Remediation

References

CVE-2003-1530

Related Vulnerabilities

Python CVE-2023-6507 Vulnerability (CVE-2023-6507)

MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-6727)

WordPress Plugin Check & Log Email Cross-Site Scripting (0.5.1)

Oracle JRE CVE-2013-5783 Vulnerability (CVE-2013-5783)

WordPress Plugin Form for WordPress-Zoho Forms Cross-Site Scripting (3.0)

Severity

High

Classification

CVE-2003-1530 CWE-138

Tags

Missing Update Known Vulnerabilities