Multiple SQL Injection Vulnerabilities in BroadBoard Instant ASP Message Board

CVE-2004-1555 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Multiple SQL injection vulnerabilities in BroadBoard Instant ASP Message Board allow remote attackers to run arbitrary SQL commands via the (1) keywords parameter to search.asp, (2) handle parameter to profile.asp, (3) txtUserHandle parameter to reg2.asp or (4) txtUserEmail parameter to forgot.asp.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.