CVE-2006-3940
published 2006-07-31CVE-2006-3940: Multiple SQL injection vulnerabilities in phpbb-Auction allow remote attackers to execute arbitrary SQL commands via (1) the ar parameter in auction_room.php…
PriorityP334high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
1.12%
62.0th percentile
Multiple SQL injection vulnerabilities in phpbb-Auction allow remote attackers to execute arbitrary SQL commands via (1) the ar parameter in auction_room.php and (2) the u parameter in auction_store.php. NOTE: the auction_rating.php vector is already covered by CVE-2005-1234. NOTE: the original disclosure states that the product name is "PHP-Auction", but this is probably an error.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| phpbb_group | phpbb-auction | — | — |
| phpbb_group | phpbb-auction | — | — |
| phpbb_group | phpbb-auction | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
phpBB-Auction 1.x - 'auction_room.php?ar' SQL Injection
exploitdb·2006-07-26
CVE-2006-3940 phpBB-Auction 1.x - 'auction_room.php?ar' SQL Injection
phpBB-Auction 1.x - 'auction_room.php?ar' SQL Injection
---
source: https://www.securityfocus.com/bid/19179/info
PHPBB-Auction is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query.
These vulnerabilities could permit remote attackers to pass malicious input to database queries, resulting in the modification of query logic or other attacks.
A successful attack could allow an attacker to compromise the software, access or modify data, or exploit vulnerabilities in the underlying database implementation.
http://www.example.com/phpbb/auction_room.php?ar=[num][sql]
http://www.example.com/phpbb/auction_room.php?order=price_asc&ar=[num][sql]
Exploit-DB
phpBB-Auction 1.x - 'auction_store.php?u' SQL Injection
exploitdb·2006-07-26
CVE-2006-3940 phpBB-Auction 1.x - 'auction_store.php?u' SQL Injection
phpBB-Auction 1.x - 'auction_store.php?u' SQL Injection
---
source: https://www.securityfocus.com/bid/19179/info
PHPBB-Auction is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query.
These vulnerabilities could permit remote attackers to pass malicious input to database queries, resulting in the modification of query logic or other attacks.
A successful attack could allow an attacker to compromise the software, access or modify data, or exploit vulnerabilities in the underlying database implementation.
http://www.example.com/phpbb/auction_store.php?mode=store&u=[num][sql]
No writeups or analysis indexed.
http://securityreason.com/securityalert/1306http://www.aria-security.net/advisory/phpauction.txthttp://www.securityfocus.com/archive/1/441190/100/0/threadedhttp://www.securityfocus.com/bid/19179https://exchange.xforce.ibmcloud.com/vulnerabilities/28006http://securityreason.com/securityalert/1306http://www.aria-security.net/advisory/phpauction.txthttp://www.securityfocus.com/archive/1/441190/100/0/threadedhttp://www.securityfocus.com/bid/19179https://exchange.xforce.ibmcloud.com/vulnerabilities/28006
2006-07-31
Published