SQL injection vulnerability in part.userprofile.php in Connectix Boards 0.7 and earlier allows remote authenticated users to execute arbitrary SQL commands and obtain privileges via the p_skin parameter to index.php.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2007-03-03 12:19
Updated : 2018-10-16 09:37
NVD link : CVE-2007-1254
Mitre link : CVE-2007-1254
JSON object : View
CWE
Products Affected
connectix
- connectix_boards