CVE-2008-4332

Description

SQL injection vulnerability in the showjavatopic function in func.php in PHP infoBoard V.7 Plus allows remote attackers to execute arbitrary SQL commands via the idcat parameter to showtopic.php.

Affected products

cannot / php_infoboardv.7 – v.7

References

MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/45440
VENDOR_ADVISORYhttp://secunia.com/advisories/31977
EXPLOIThttps://www.exploit-db.com/exploits/6566
MISChttp://www.securityfocus.com/bid/31405