CVE-2006-4367 Information

Description

SQL injection vulnerability in alltopics.php in the All Topics Hack 1.5.0 and earlier for phpBB 2.0.21 allows remote attackers to execute arbitrary SQL commands via the start parameter.

Reference

http://www.securityfocus.com/bid/19682 https://exchange.xforce.ibmcloud.com/vulnerabilities/28538 https://www.exploit-db.com/exploits/2248