cbcvebase.
CVE-2003-1215
published 2003-12-29

CVE-2003-1215: SQL injection vulnerability in groupcp.php for phpBB 2.0.6 and earlier allows group moderators to perform unauthorized activities via the sql_in parameter.

PriorityP419medium4.6CVSS 2.0
AVLACLAuNCPIPAP
EPSS
0.37%
28.4th percentile
SQL injection vulnerability in groupcp.php for phpBB 2.0.6 and earlier allows group moderators to perform unauthorized activities via the sql_in parameter.

Affected

19 ranges
VendorProductVersion rangeFixed in
phpbb_groupphpbb
phpbb_groupphpbb
phpbb_groupphpbb
phpbb_groupphpbb
phpbb_groupphpbb
phpbb_groupphpbb
phpbb_groupphpbb
phpbb_groupphpbb
phpbb_groupphpbb
phpbb_groupphpbb
phpbb_groupphpbb
phpbb_groupphpbb
phpbb_groupphpbb
phpbb_groupphpbb
phpbb_groupphpbb
phpbb_groupphpbb
phpbb_groupphpbb
phpbb_groupphpbb
phpbb_groupphpbb
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.