CVE-2002-1482 Information

Description

SQL injection vulnerability in login.php for phpGB 1.20 and earlier when magic_quotes_gpc is not enabled allows remote attackers to gain administrative privileges via SQL code in the password entry.

Reference

http://archives.neohapsis.com/archives/bugtraq/2002-09/0076.html http://www.iss.net/security_center/static/10068.php http://www.securityfocus.com/bid/5673