Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple SQL injection vulnerabilities in index.php in sCssBoard 1.0, 1.1, 1.11, and 1.12 allow remote attackers to execute arbitrary SQL commands via (1) the f parameter in a showforum action, (2) the u parameter in a profile action, (3) the viewcat parameter, or (4) a combination of scb_uid and scb_ident cookie values.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
sCssBoard 'index.php' 多个SQL注入漏洞
Vulnerability Description
sCssBoard是一个用PHP开发的简单而快速的论坛软件。 sCssBoard 1.0版本, 1.1版本, 1.11版本,和1.12版本的index.php中存在多个SQL注入漏洞。远程攻击者可以借助(1)一个showforum操作中的f参数, (2)一个剖面操作中的u参数, (3)viewcat参数,或(4) scb_uid和scb_ident cookie值的结合,执行任意SQL指令。
CVSS Information
N/A
Vulnerability Type
N/A