SQL Injection Vulnerability in prefs.php in phpBB 1.4.0 and 1.4.1

SQL Injection Vulnerability in prefs.php in phpBB 1.4.0 and 1.4.1

CVE-2001-1472 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in prefs.php in phpBB 1.4.0 and 1.4.1 allows remote authenticated users to execute arbitrary SQL commands and gain administrative access via the viewemail parameter.

Learn more about our User Device Pen Test.