CVE-2007-0340

Thwboard < 3.0_beta_2.84 - SQL Injection

Title source: rule

Description

SQL injection vulnerability in inc/header.inc.php in ThWboard 3.0b2.84-php5 and earlier allows remote attackers to execute arbitrary SQL commands via the board[styleid] parameter to index.php.

Exploits (1)

exploitdb WORKING POC VERIFIED

by rgod · phpwebappsphp

https://www.exploit-db.com/exploits/3124

View Code ZIP pw:eip

References (3)

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/3124

[Third Party Advisory, VDB Entry] http://osvdb.org/32837

[Third Party Advisory] http://secunia.com/advisories/23735

Scores

EPSS 0.0091

EPSS Percentile 75.9%

Details

Status published

Products (1)

thwboard/thwboard < 3.0_beta_2.84

Published Jan 18, 2007

Tracked Since Feb 18, 2026