Vulnerability CVE-2008-2067

Vulnerability CVE-2008-2067

Published: 2008-05-02 Modified: 2012-02-12

Description:

	Topic	Author	Date
Low	Minibb 2.2a XSS Vulnerability	Dr.Crash	03.05.2008

Type:

(Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
7.5/10	6.4/10	10/10

Affected software
Minibb -> Minibb

http://seclists.org/fulldisclosure/2013/Jul/102

http://securityreason.com/securityalert/3846

http://www.minibb.com/download.php?file=minibb_update

http://www.minibb.com/forums/news-9/minibb-3.0.1-released-stable-fixed-secured-dedicated-6059.html

http://www.securityfocus.com/archive/1/491375/100/0/threaded

http://www.securityfocus.com/bid/61116

https://exchange.xforce.ibmcloud.com/vulnerabilities/42270

https://www.mavitunasecurity.com/xss-and-sql-injection-vulnerabilities-in-minibb/