CVE-2006-3994

XMB Software Xmb Forum < 1.9.6_alpha - SQL Injection

Title source: rule

Description

SQL injection vulnerability in the u2u_send_recp function in u2u.inc.php in XMB (aka extreme message board) 1.9.6 Alpha and earlier allows remote attackers to execute arbitrary SQL commands via the u2uid parameter to u2u.php, which is directly accessed from $_POST and bypasses the protection scheme.

Exploits (1)

exploitdb WORKING POC VERIFIED

by rgod · phpwebappsphp

https://www.exploit-db.com/exploits/2105

View Code ZIP pw:eip

References (6)

[Vendor Advisory] http://secunia.com/advisories/21293

[Exploit] http://www.securityfocus.com/bid/19280

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/28159

[Various Sources] https://docs.xmbforum2.com/index.php?title=Security_Issue_History

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/2105

[Third Party Advisory] http://www.vupen.com/english/advisories/2006/3088

Scores

EPSS 0.0060

EPSS Percentile 69.6%

Details

Status published

Products (1)

xmb_software/xmb_forum < 1.9.6_alpha

Published Aug 05, 2006

Tracked Since Feb 18, 2026