CVE-2005-1642 Information

Description

SQL injection vulnerability in the verify_email function in Woltlab Burning Board 2.x and earlier allows remote attackers to execute arbitrary SQL commands via the $email variable.

Reference

http://archives.neohapsis.com/archives/bugtraq/2005-05/0199.html http://secunia.com/advisories/15395 http://www.attrition.org/pipermail/vim/2005-May/000047.html http://www.gulftech.org/?node=research&article_id=00075-05162005 http://www.osvdb.org/16575 http://www.vupen.com/english/advisories/2005/0558