Security Advisory

CVE-2004-0343

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2004-03-18 05:00:00

Last updated 2024-08-08 00:17:14

Assigner mitre

State PUBLISHED

Description

Multiple SQL injection vulnerabilities in YaBB SE 1.5.4 through 1.5.5b allow remote attackers to execute arbitrary SQL via (1) the msg parameter in ModifyMessage.php or (2) the postid parameter in ModifyMessage.php.

← Browse all CVEs View on cve.org ↗