Description

phpBB 2.0.20 does not properly verify user-specified input variables used as limits to SQL queries, which allows remote attackers to obtain sensitive information via a negative LIMIT specification, as demonstrated by the start parameter to memberlist.php, which reveals the SQL query in the resulting error message.

Remediation

References

CVE-2006-2220

Related Vulnerabilities

WordPress Plugin Advanced Custom Fields (ACF) Cross-Site Scripting (5.8.11)

Drupal Improper Authentication Vulnerability (CVE-2010-3685)

WordPress Plugin Mail On Update Cross-Site Request Forgery (5.1.0)

WordPress Incorrect Default Permissions Vulnerability (CVE-2011-1762)

WordPress Plugin WP REST API (WP API) Security Bypass (1.2.1)

Severity

Medium

Classification

CVE-2006-2220 CWE-20

Tags

Missing Update Known Vulnerabilities