CVE-2005-3394

Published: Nov 1, 2005Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Multiple SQL injection vulnerabilities in forum.php in oaboard forum 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) channel parameter in the topics module and (2) topic parameter in the posting module.

Affected (1)

Products: Oaboard: Oaboard

Oaboard

1 product

Oaboard

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Oaboard Oaboard	Version 1.0

References (12)

http://secunia.com/advisories/17373

Source: cve@mitre.org

Vendor Advisory

http://www.osvdb.org/20420

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/415299

Source: cve@mitre.org

http://www.securityfocus.com/bid/15245

Source: cve@mitre.org

Exploit

http://www.vupen.com/english/advisories/2005/2258

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/22932

Source: cve@mitre.org

http://secunia.com/advisories/17373