SQL Injection Vulnerabilities in edmoBBS 0.9 and Earlier: Remote Code Execution

CVE-2005-3870 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Multiple SQL injection vulnerabilities in edmobbs9r.php in edmoBBS 0.9 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) table and (2) messageID parameters.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.