CVE-2006-3797 Information
Feb 14, 2021
cve
Description
SQL injection vulnerability in DeluxeBB 1.07 and earlier allows remote attackers to bypass authentication spoof users and modify settings via the (1) memberpw and (2) membercookie cookies.
Reference
http://lists.grok.org.uk/pipermail/full-disclosure/2006-July/047989.html http://securityreason.com/securityalert/1254 http://www.securityfocus.com/archive/1/440435/100/0/threaded http://www.securityfocus.com/bid/19052 https://exchange.xforce.ibmcloud.com/vulnerabilities/27835
Share on: