 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| CVE ID: | CVE-2014-9215 |
| Description: | SQL injection vulnerability in the CheckEmail function in includes/functions.class.php in PBBoard 3.0.1 before 20141128 allows remote attackers to execute arbitrary SQL commands via the email parameter in the register page to index.php. NOTE: the email parameter in the forget page vector is already covered by CVE-2012-4034.2. |
| Test IDs: | 1.3.6.1.4.1.25623.1.0.805205 |
| Cross References: |
Common Vulnerability Exposure (CVE) ID: CVE-2014-9215 Bugtraq: 20141204 CVE-2014-9215 - SQL Injection in PBBoard CMS (Google Search) http://www.securityfocus.com/archive/1/534149/100/0/threaded http://www.itas.vn/news/ITAS-Team-discovered-SQL-Injection-in-PBBoard-CMS-68.html https://www.youtube.com/watch?v=AQiGvH5xrJg |