SQL Injection Vulnerability in phpBB Chart Mod
CVE-2006-2360

Currently unrated

Key Information:

Vendor: PHPbb Group
Status: PHPbb
Vendor: CVE Published:; 15 May 2006

🔔 Create PHPbb Group Vulnerability Alert

What is CVE-2006-2360?

An SQL injection vulnerability exists in the charts.php file within the Chart mod for phpBB. This flaw allows remote attackers to craft malicious SQL commands through the 'id' parameter, potentially compromising the database and extracting sensitive information or manipulating the database structure.

References

http://www.securityfocus.com/archive/1/434461/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/archive/1/433848/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/17952

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 15, 2006
Vulnerability Reserved
May 15, 2006

CVE-2006-2360 Data

JSON