CVE-2006-2061
CVE-2006-2061
SQL injection vulnerability in lib/func_taskmanager.php in Invision Power Board (IPB) 2.1.x and 2.0.x before 20060425 allows remote attackers to execute arbitrary SQL commands via the ck parameter, which can inject at most 32 characters.
Productos afectados
n/a · n/aPoCs públicas encontradas — 1
exploitdbwww.exploit-db.com/exploits/27736no verificado⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
http://forums.invisionpower.com/index.php?showtopic=213374http://secunia.com/advisories/19830http://securityreason.com/securityalert/796https://exchange.xforce.ibmcloud.com/vulnerabilities/26071http://www.securityfocus.com/archive/1/431990/100/0/threadedhttp://www.securityfocus.com/archive/1/432226/100/0/threadedhttp://www.securityfocus.com/bid/17690http://www.vupen.com/english/advisories/2006/1534