CVE-2007-1254 Information
Feb 14, 2021
cve
Description
SQL injection vulnerability in part.userprofile.php in Connectix Boards 0.7 and earlier allows remote authenticated users to execute arbitrary SQL commands and obtain privileges via the p_skin parameter to index.php.
Reference
http://osvdb.org/33537 http://secunia.com/advisories/24255 http://securityreason.com/securityalert/2364 http://www.securityfocus.com/archive/1/460947/100/0/threaded https://www.exploit-db.com/exploits/3352
Share on: