Multiple SQL Injection Vulnerabilities in GR Board 1.8.6.5 Community Edition

Multiple SQL Injection Vulnerabilities in GR Board 1.8.6.5 Community Edition

CVE-2011-5091 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Multiple SQL injection vulnerabilities in GR Board (aka grboard) 1.8.6.5 Community Edition allow remote attackers to execute arbitrary SQL commands via the (1) tableType or (2) blindTarget parameter to view.php, (3) the delTargets[0] parameter to view_memo.php, or (4) the isReported parameter to write_ok.php.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.