CVE-2001-1482 Information

Description

SQL injection vulnerability in bb_memberlist.php for phpBB 1.4.2 allows remote attackers to execute arbitrary SQL queries via the $sortby variable.

Reference

http://www.securityfocus.com/archive/1/219178 http://www.securityfocus.com/bid/3411 https://exchange.xforce.ibmcloud.com/vulnerabilities/7253