SQL Injection Vulnerability in phpBB Photo Album
CVE-2005-1114

Currently unrated

Key Information:

Vendor: PHPbb Group
Status: PHPbb; Photo Album
Vendor: CVE Published:; 2 May 2005

🔔 Create PHPbb Group Vulnerability Alert

What is CVE-2005-1114?

The Photo Album module in phpBB 2.0.53 is susceptible to multiple SQL injection vulnerabilities, which can be exploited by remote attackers. By manipulating the 'mode' or 'search' parameters in requests, attackers could inject arbitrary SQL commands, potentially compromising the database and leading to unauthorized data access or manipulation. This vulnerability highlights the importance of validating user input to safeguard applications against SQL injection attacks.

References

http://www.securityfocus.com/bid/13155

vdb-entryx_refsource_BID

http://www.digitalparadox.org/advisories/phpbbp.txt

x_refsource_MISC

http://marc.info/?l=bugtraq&m=111343406309969&w=2

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 2, 2005
Vulnerability Reserved
Apr 16, 2005

CVE-2005-1114 Data

JSON