SQL injection vulnerability in thread.php in WoltLab Burning Board (wBB) 2.3.x allows remote malicious users to obtain the version numbers of PHP, MySQL, and wBB via the page parameter. NOTE: this issue might be a forced SQL error. Also, the original report was disputed by a third party for 2.3.3 and 2.3.4.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
woltlab burning board 2.3.0 |
||
woltlab burning board 2.3.1 |
||
woltlab burning board 2.3.2 |
||
woltlab burning board 2.3.3 |
||
woltlab burning board 2.3.4 |
||
woltlab burning board 2.3.5 |