Description

phpBB 2.0.20 does not properly verify user-specified input variables used as limits to SQL queries, which allows remote attackers to obtain sensitive information via a negative LIMIT specification, as demonstrated by the start parameter to memberlist.php, which reveals the SQL query in the resulting error message.

Remediation

References

CVE-2006-2220

Related Vulnerabilities

WordPress Plugin WP Maps-Display Google Maps Perfectly with Ease Cross-Site Scripting (4.0.4)

WordPress Plugin IMPress for IDX Broker Unspecified Vulnerability (2.5.11)

WordPress Plugin FireStorm Professional Real Estate 'id' Parameter SQL Injection (2.06.03)

TYPO3 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-6144)

MyBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2018-7305)

Severity

Medium

Classification

CVE-2006-2220 CWE-20

Tags

Missing Update Known Vulnerabilities