SQL injection vulnerability in newpost.php in DeluxeBB 1.3 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the membercookie cookie when adding a new thread.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2010-05-07T22:00:00Z
Updated: 2024-09-16T23:26:10.216Z
Reserved: 2010-05-07T00:00:00Z
Link: CVE-2010-1859
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2010-05-07T23:00:01.500
Modified: 2010-05-10T04:00:00.000
Link: CVE-2010-1859
Redhat
No data.