SQL Injection Vulnerabilities in phpbb-Auction

SQL Injection Vulnerabilities in phpbb-Auction

CVE-2005-1234 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

Multiple SQL injection vulnerabilities in phpbb-Auction allow remote attackers to execute arbitrary SQL commands via the (1) u parameter to auction_rating.php or (2) ar parameter to action_offer.php.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.