Security Advisory

CVE-2009-1277

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2009-04-09 16:00:00

Last updated 2024-08-07 05:04:49

Assigner mitre

State PUBLISHED

Description

SQL injection vulnerability in index.php in Gravity Board X (GBX) 2.0 BETA allows remote attackers to execute arbitrary SQL commands via the member_id parameter in a viewprofile action. NOTE: the board_id issue is already covered by CVE-2008-2996.2.

← Browse all CVEs View on cve.org ↗