SQL Injection Vulnerabilities in Phorum 5.0.11 and Earlier

SQL Injection Vulnerabilities in Phorum 5.0.11 and Earlier

CVE-2004-2240 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Multiple SQL injection vulnerabilities in Phorum 5.0.11 and earlier allow remote attackers to modify SQL statements via (1) the query string in read.php or (2) unknown vectors in file.php.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.