CVE-2004-2062
AntiBoard 0.7.2 - SQL Injection via thread_id parent_id or mode Parameters
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2004-2062. PoCs published by Josh Gilmour.
AI-analyzed exploit summary The exploit demonstrates SQL injection vulnerabilities in AntiBoard versions 0.7.2 and prior by injecting malicious SQL queries via URL parameters and POST data. It includes multiple attack vectors targeting different parameters in the application.
Description
SQL injection vulnerability in antiboard.php in AntiBoard 0.7.2 and earlier allows remote attackers to execute arbitrary SQL via the (1) thread_id, (2) parent_id, or (3) mode parameters.
Exploits (1)
The exploit demonstrates SQL injection vulnerabilities in AntiBoard versions 0.7.2 and prior by injecting malicious SQL queries via URL parameters and POST data. It includes multiple attack vectors targeting different parameters in the application.