CVE-2007-1902

N/A Unknown

Published: May 14, 2007 Modified: April 23, 2026

Description

Multiple SQL injection vulnerabilities in SonicBB 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) part and (2) by parameters to (a) search.php, or the (2) id parameter to (b) viewforum.php.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://marc.info/?l=full-disclosure&m=117914598917534&w=2

Source: cve@mitre.org

http://secunia.com/advisories/25279

Source: cve@mitre.org

http://www.netvigilance.com/advisory0019

Source: cve@mitre.org

Exploit Vendor Advisory

http://www.osvdb.org/33907

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/468536/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/23964

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2007/1816

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/34258

Source: cve@mitre.org

http://marc.info/?l=full-disclosure&m=117914598917534&w=2