CVE-2007-0388
Woltlab Burning Board < 1.0.2 - SQL Injection
Title source: ruleDescription
SQL injection vulnerability in search.php in Woltlab Burning Board (wBB) 1.0.2 and earlier, and 2.3.6 and earlier in the 2.x series, allows remote attackers to execute arbitrary SQL commands via the boardids[1] and other boardids[] parameters.
Exploits (3)
exploitdb
WORKING POC
VERIFIED
by silent vapor · phpwebappsphp
https://www.exploit-db.com/exploits/3143
References (4)
Scores
EPSS
0.0088
EPSS Percentile
75.4%
Details
Status
published
Products (1)
woltlab/burning_board
< 1.0.2
Published
Jan 19, 2007
Tracked Since
Feb 18, 2026