← back
CVE-2007-3244

CVE-2007-3244

EPSS 1.3%
SQL injection vulnerability in bb-includes/formatting-functions.php in bbPress before 0.8.1 might allow remote attackers to execute arbitrary SQL commands via unspecified vectors to forums/bb-edit.php, as demonstrated by a PRE element, aka the "quircky slashes bug."
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://bbpress.org/blog/2007/02/bbpress-081/http://osvdb.org/36606http://secunia.com/advisories/25696http://trac.bbpress.org/changeset/717http://trac.bbpress.org/ticket/592http://www.securityfocus.com/bid/24488http://www.vupen.com/english/advisories/2007/2219