CVE-2002-1879 Information

Description

SQL injection vulnerability in LokwaBB 1.2.2 allows remote attackers to execute arbitrary SQL commands via the (1) member parameter to member.php or (2) loser parameter to misc.php.

Reference

http://archives.neohapsis.com/archives/bugtraq/2002-06/0055.html http://www.ifrance.com/kitetoua/tuto/LokwaBB.txt http://www.iss.net/security_center/static/9318.php http://www.securityfocus.com/bid/4981