CVE-2012-1603

NONECVSS 0.0

0.0

Multiple SQL injection vulnerabilities in ajaxserver.php in NextBBS 0.6 allow remote attackers to execute arbitrary SQL commands via the (1) curstr parameter in the findUsers function, (2) id parameter in the isIdAvailable function, or (3) username parameter in the getGreetings function.

🔗 References (14)

secalert@redhathttp://archives.neohapsis.com/archives/bugtraq/2012-03/0135.html
secalert@redhathttp://packetstormsecurity.org/files/111250/NextBBS-0.6.0-Authentication-Bypass-SQL-Injection-XSS.html
secalert@redhathttp://www.openwall.com/lists/oss-security/2012/03/29/8
secalert@redhathttp://www.openwall.com/lists/oss-security/2012/03/30/2
secalert@redhathttp://www.osvdb.org/80637
secalert@redhathttp://www.securityfocus.com/bid/52728
secalert@redhathttp://www.waraxe.us/advisory-80.html
af854a3a-2127-422b-91ae-364da2661108http://archives.neohapsis.com/archives/bugtraq/2012-03/0135.html
af854a3a-2127-422b-91ae-364da2661108http://packetstormsecurity.org/files/111250/NextBBS-0.6.0-Authentication-Bypass-SQL-Injection-XSS.html
af854a3a-2127-422b-91ae-364da2661108http://www.openwall.com/lists/oss-security/2012/03/29/8
af854a3a-2127-422b-91ae-364da2661108http://www.openwall.com/lists/oss-security/2012/03/30/2
af854a3a-2127-422b-91ae-364da2661108http://www.osvdb.org/80637
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/52728
af854a3a-2127-422b-91ae-364da2661108http://www.waraxe.us/advisory-80.html

Is Your Infrastructure Affected by CVE-2012-1603?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2012-1603

📅 Published

🔄 Last Modified

🔗 References (14)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2012-1603?