CVE-2004-1864

Publication date

2005-05-10 04:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in Extreme Messageboard (XMB) 1.9 beta allows remote attackers to execute arbitrary SQL commands via the restrict parameter to (1) member.php, (2) misc.php, or (3) today.php.