CVE-2005-0569 Information

Description

Multiple SQL injection vulnerabilities in PunBB 1.2.1 allow remote attackers to execute arbitrary SQL commands via the (1) language parameter to register.php (2) change email feature in profile.php (3) posts or (4) topics parameter to moderate.php.

Reference

http://marc.info/?l=bugtraq&m=110927754230666&w=2 http://secunia.com/advisories/14394 http://secunia.com/advisories/14538 http://www.punbb.org/changelogs/1.2.1_to_1.2.2.txt http://www.securityfocus.com/bid/12652 https://exchange.xforce.ibmcloud.com/vulnerabilities/19473