Description
SQL injection vulnerability in root/includes/prime_quick_style.php in the Prime Quick Style addon before 1.2.3 for phpBB 3 allows remote authenticated users to execute arbitrary SQL commands via the prime_quick_style parameter to ucp.php.
Exploits (1)
References (5)
Core 5
Core References
Exploit x_refsource_misc
http://www.phpbb.com/community/viewtopic.php?f=70&t=692625&start=150#p10649315
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/36532
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/36214
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/9569
Exploit x_refsource_misc
http://www.absoluteanime.com/forum/mods/Prime%20Quick%20Style/install.xml
Scores
EPSS
0.0029
EPSS Percentile
52.3%
Details
CWE
CWE-89
Status
published
Products (1)
absoluteanime/prime_quick_style
1.2.3
Published
Sep 03, 2009
Tracked Since
Feb 18, 2026