CVE-2004-0323

Xmb - SQL Injection

Title source: rule

Description

Multiple SQL injection vulnerabilities in XMB 1.8 Final SP2 allow remote attackers to inject arbitrary SQL and gain privileges via the (1) ppp parameter in viewthread.php, (2) desc parameter in misc.php, (3) tpp parameter in forumdisplay.php, (4) ascdesc parameter in forumdisplay.php, or (5) the addon parameter in stats.php. NOTE: it has also been shown that item (3) is also in XMB 1.9 beta.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Janek Vind · textwebappsphp

https://www.exploit-db.com/exploits/23748

View Code ZIP pw:eip

References (7)

Core 7

Core References

Exploit, Patch vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/9726

Third Party Advisory mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2004-02/0645.html

Various Sources x_refsource_confirm

http://www.xmbforum.com/community/boards/viewthread.php?tid=746859

Mailing List mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=107756526625179&w=2

Third Party Advisory mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2004-03/0265.html

Various Sources x_refsource_misc

https://docs.xmbforum2.com/index.php?title=Security_Issue_History

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/15295

Scores

EPSS 0.0084

EPSS Percentile 74.8%

Details

Status published

Products (3)

xmb_forum/xmb 1.8

xmb_forum/xmb 1.8_sp1

xmb_forum/xmb 1.8_sp2

Published Dec 31, 2004

Tracked Since Feb 18, 2026