ID de Prueba:	1.3.6.1.4.1.25623.1.0.60128
Categoría:	CGI abuses
Título:	FlexBB <= 0.5.5 SQL Injection
Resumen:	NOSUMMARY
Descripción:	Description: The installed version of FlexBB, according to the version number, is vulnerable to a SQL injection attack as a result of insufficient data sanitization of the flexbb_temp_id and flexbb_username parameters in a cookie. Versions up to and including 0.5.5 are vulnerable. Solution : Upgrade to a later version. Risk factor : High CVSS Score: 7.5
Referencia Cruzada:	BugTraq ID: 17574 BugTraq ID: 17568 Common Vulnerability Exposure (CVE) ID: CVE-2006-2034 http://www.securityfocus.com/bid/17574 Bugtraq: 20060421 FlexBB 0.5.5 Exploit [ function/showprofile.php ] Remote SQL Injection (Google Search) http://www.securityfocus.com/archive/1/431793/100/0/threaded http://www.osvdb.org/24867 Common Vulnerability Exposure (CVE) ID: CVE-2006-1978 http://www.securityfocus.com/bid/17568 Bugtraq: 20060417 FlexBB 0.5.5 Bypass Exploit (Google Search) http://www.securityfocus.com/archive/1/431156/100/0/threaded https://www.exploit-db.com/exploits/1686 http://securitytracker.com/id?1015949
Copyright	Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.