{ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-6518", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Multiple SQL injection vulnerabilities in search.php in WoltLab Burning Board (wBB) Lite 1.0.2 pl3e allow remote attackers to execute arbitrary SQL commands via the (1) showposts, (2) sortby, and (3) sortorder parameters." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "woltlab-search-sql-injection(39174)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39174" }, { "name": "20071220 Woltlab Burning Board 1.0.2 SQL-Injection Vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/485408/100/0/threaded" }, { "name": "ADV-2007-4300", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/4300" }, { "name": "28188", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/28188" }, { "name": "26973", "refsource": "BID", "url": "http://www.securityfocus.com/bid/26973" }, { "name": "39497", "refsource": "OSVDB", "url": "http://www.osvdb.org/39497" } ] } }