{"containers":{"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"datePublic":"2006-09-04T00:00:00.000Z","descriptions":[{"lang":"en","value":"Multiple SQL injection vulnerabilities in SoftBB 0.1, and possibly earlier, allow remote attackers to execute arbitrary SQL commands via the (1) groupe parameter in addmembre.php and the (2) select parameter in moveto.php."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2018-10-17T20:57:01.000Z","orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre"},"references":[{"name":"2300","tags":["exploit","x_refsource_EXPLOIT-DB"],"url":"https://www.exploit-db.com/exploits/2300"},{"name":"28578","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://www.osvdb.org/28578"},{"name":"28577","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://www.osvdb.org/28577"},{"name":"21761","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/21761"},{"name":"ADV-2006-3478","tags":["vdb-entry","x_refsource_VUPEN"],"url":"http://www.vupen.com/english/advisories/2006/3478"},{"name":"1016785","tags":["vdb-entry","x_refsource_SECTRACK"],"url":"http://securitytracker.com/id?1016785"},{"name":"1521","tags":["third-party-advisory","x_refsource_SREASON"],"url":"http://securityreason.com/securityalert/1521"},{"tags":["x_refsource_MISC"],"url":"http://acid-root.new.fr/advisories/10060904.txt"},{"name":"softbb-addmembre-sql-injection(28747)","tags":["vdb-entry","x_refsource_XF"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/28747"},{"name":"20060904 SoftBB 0.1 Remote PHP Code Execution Exploit","tags":["mailing-list","x_refsource_BUGTRAQ"],"url":"http://www.securityfocus.com/archive/1/445087/100/0/threaded"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2006-4632","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Multiple SQL injection vulnerabilities in SoftBB 0.1, and possibly earlier, allow remote attackers to execute arbitrary SQL commands via the (1) groupe parameter in addmembre.php and the (2) select parameter in moveto.php."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"2300","refsource":"EXPLOIT-DB","url":"https://www.exploit-db.com/exploits/2300"},{"name":"28578","refsource":"OSVDB","url":"http://www.osvdb.org/28578"},{"name":"28577","refsource":"OSVDB","url":"http://www.osvdb.org/28577"},{"name":"21761","refsource":"SECUNIA","url":"http://secunia.com/advisories/21761"},{"name":"ADV-2006-3478","refsource":"VUPEN","url":"http://www.vupen.com/english/advisories/2006/3478"},{"name":"1016785","refsource":"SECTRACK","url":"http://securitytracker.com/id?1016785"},{"name":"1521","refsource":"SREASON","url":"http://securityreason.com/securityalert/1521"},{"name":"http://acid-root.new.fr/advisories/10060904.txt","refsource":"MISC","url":"http://acid-root.new.fr/advisories/10060904.txt"},{"name":"softbb-addmembre-sql-injection(28747)","refsource":"XF","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/28747"},{"name":"20060904 SoftBB 0.1 Remote PHP Code Execution Exploit","refsource":"BUGTRAQ","url":"http://www.securityfocus.com/archive/1/445087/100/0/threaded"}]}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-07T19:14:47.774Z"},"title":"CVE Program Container","references":[{"name":"2300","tags":["exploit","x_refsource_EXPLOIT-DB","x_transferred"],"url":"https://www.exploit-db.com/exploits/2300"},{"name":"28578","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://www.osvdb.org/28578"},{"name":"28577","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://www.osvdb.org/28577"},{"name":"21761","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/21761"},{"name":"ADV-2006-3478","tags":["vdb-entry","x_refsource_VUPEN","x_transferred"],"url":"http://www.vupen.com/english/advisories/2006/3478"},{"name":"1016785","tags":["vdb-entry","x_refsource_SECTRACK","x_transferred"],"url":"http://securitytracker.com/id?1016785"},{"name":"1521","tags":["third-party-advisory","x_refsource_SREASON","x_transferred"],"url":"http://securityreason.com/securityalert/1521"},{"tags":["x_refsource_MISC","x_transferred"],"url":"http://acid-root.new.fr/advisories/10060904.txt"},{"name":"softbb-addmembre-sql-injection(28747)","tags":["vdb-entry","x_refsource_XF","x_transferred"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/28747"},{"name":"20060904 SoftBB 0.1 Remote PHP Code Execution Exploit","tags":["mailing-list","x_refsource_BUGTRAQ","x_transferred"],"url":"http://www.securityfocus.com/archive/1/445087/100/0/threaded"}]}]},"cveMetadata":{"assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","cveId":"CVE-2006-4632","datePublished":"2006-09-08T20:00:00.000Z","dateReserved":"2006-09-08T00:00:00.000Z","dateUpdated":"2024-08-07T19:14:47.774Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}