| VID |
21753 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The XMB Forum, according to its version number, has an SQL injection vulnerability in the member.php script. Extreme Message Board (XMB) Forum is a freely available web forum written in PHP. XMB Forum version 1.8 and earlier versions could allow a remote attacker to execute arbitrary SQL commands, caused by improper filtering of user-supplied input passed to the email1 and email2 parameters of the member.php script. This vulnerability could permit a remote attacker to pass malicious input to database queries, potentially resulting in data exposure, modification of the query logic, or even data modification or attacks against the database itself. If the 'register_globals' option is enabled in the php.ini script, a remote attacker could exploit this flaw to obtain sensitive information, including the password hashes of users and the super administrator.
* Note: This check solely relied on the version number of XMB Forum installed on the remote Web server to assess this vulnerability, so this might be a false positive.
* References:
http://www.securityfocus.com/archive/1/319411
* Platforms Affected:
XMB Group, XMB Forum version 1.8 and earlier versions
Any operating system Any version |
| Recommendation |
Upgrade to the latest version of XMB (1.8 Final Edition SP1 or later), available from the XMB Web site at http://www.xmbforum2.com/ |
| Related URL |
(CVE) |
| Related URL |
7406 (SecurityFocus) |
| Related URL |
11838 (ISS) |
|
