Description
SQL injection vulnerability in topics.php in Blue Dojo Graffiti Forums 1.0 allows remote attackers to execute arbitrary SQL commands via the f parameter.
Affected products
- blue_dojo / graffiti_forums1.0 – 1.0
References
- VENDOR_ADVISORYhttp://secunia.com/advisories/21017
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2006/2738
- VENDOR_ADVISORYhttp://www.neosecurityteam.net/index.php?action=advisories&id=24
- MISChttp://www.securityfocus.com/bid/18928
- MISChttp://securityreason.com/securityalert/1221
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/27634
- MISChttp://www.securityfocus.com/archive/1/439605/100/0/threaded