CVE-2007-0388 Information

Description

SQL injection vulnerability in search.php in Woltlab Burning Board (wBB) 1.0.2 and earlier and 2.3.6 and earlier in the 2.x series allows remote attackers to execute arbitrary SQL commands via the boardids[1] and other boardids[] parameters.

Reference

http://osvdb.org/33872 https://exchange.xforce.ibmcloud.com/vulnerabilities/31550 https://www.exploit-db.com/exploits/3143 https://www.exploit-db.com/exploits/3144