CVE-2008-5434

Published: Dec 11, 2008
Updated: Apr 13, 2023
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2008-5434" target="_blank" rel="noopener"> CVE-2008-5434
Severity: Medium
Exploit:

Multiple SQL injection vulnerabilities in PunBB 1.3 and 1.3.1 allow remote authenticated administrators to execute arbitrary SQL commands via the (1) order_by or (2) direction parameter to admin/users.php, or (3) configuration options to admin/settings.php.