CVE-2008-1305 – phpBB Mod FileBase 2.0 - 'id' SQL Injection

https://notcve.org/view.php?id=CVE-2008-1305

SQL injection vulnerability in filebase.php in the Filebase mod for phpBB allows remote attackers to execute arbitrary SQL commands via the id parameter. Vulnerabilidad de inyección SQL en filebase.php en el módulo Filebase para phpBB permite a atacantes remotos ejecutar comandos SQL de su elección a través del parámetro id. • https://www.exploit-db.com/exploits/5236 http://www.securityfocus.com/bid/28194 https://exchange.xforce.ibmcloud.com/vulnerabilities/41137 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •