CVE-2008-6146 Information

Feb 14, 2021 cve

Description

SQL injection vulnerability in pm.php in DeluxeBB 1.2 and earlier when magic_quotes_gpc is disabled allows remote attackers to execute arbitrary SQL commands via a delete parameter in a Delete action a different vector than CVE-2005-2989.

Reference

http://secunia.com/advisories/33351 http://www.securityfocus.com/bid/33037 https://www.exploit-db.com/exploits/7593

Share on: