PHPBB DLMan Pro Module SQL Injection Vulnerability

Bugtraq ID:	13028
Class:	Input Validation Error
CVE:	CVE-2005-1026
Remote:	Yes
Local:	No
Published:	Apr 06 2005 12:00AM
Updated:	Jul 12 2009 11:56AM
Credit:	Discovery of this vulnerability is credited to LovER BOY.
Vulnerable:	phpBB Group phpBB 2.0.13 + Debian Linux 3.1 sparc + Debian Linux 3.1 s/390 + Debian Linux 3.1 ppc + Debian Linux 3.1 mipsel + Debian Linux 3.1 mips + Debian Linux 3.1 m68k + Debian Linux 3.1 ia-64 + Debian Linux 3.1 ia-32 + Debian Linux 3.1 hppa + Debian Linux 3.1 arm + Debian Linux 3.1 alpha + Debian Linux 3.1 phpBB Group phpBB 2.0.12 phpBB Group phpBB 2.0.11 phpBB Group phpBB 2.0.10 phpBB Group phpBB 2.0.9 phpBB Group phpBB 2.0.8 a phpBB Group phpBB 2.0.8 phpBB Group phpBB 2.0.7 a phpBB Group phpBB 2.0.7 phpBB Group phpBB 2.0.6 d phpBB Group phpBB 2.0.6 c phpBB Group phpBB 2.0.6 phpBB Group phpBB 2.0.5 phpBB Group phpBB 2.0.4 phpBB Group phpBB 2.0.3 phpBB Group phpBB 2.0.2 phpBB Group phpBB 2.0.1 phpBB Group phpBB 2.0 .0 DLMan Pro DLMan Pro 0.9.8 + phpBB Group phpBB 2.0.13 + phpBB Group phpBB 2.0.12 + phpBB Group phpBB 2.0.11 + phpBB Group phpBB 2.0.10 + phpBB Group phpBB 2.0.9 + phpBB Group phpBB 2.0.8 a + phpBB Group phpBB 2.0.8 + phpBB Group phpBB 2.0.7 a + phpBB Group phpBB 2.0.7 + phpBB Group phpBB 2.0.6 d + phpBB Group phpBB 2.0.6 c + phpBB Group phpBB 2.0.6 + phpBB Group phpBB 2.0.5 + phpBB Group phpBB 2.0.4 + phpBB Group phpBB 2.0.3 + phpBB Group phpBB 2.0.2 + phpBB Group phpBB 2.0.1 + phpBB Group phpBB 2.0 .0

Not Vulnerable:	DLMan Pro DLMan Pro 0.9.8 + phpBB Group phpBB 2.0.13 + phpBB Group phpBB 2.0.12 + phpBB Group phpBB 2.0.11 + phpBB Group phpBB 2.0.10 + phpBB Group phpBB 2.0.9 + phpBB Group phpBB 2.0.8 a + phpBB Group phpBB 2.0.8 + phpBB Group phpBB 2.0.7 a + phpBB Group phpBB 2.0.7 + phpBB Group phpBB 2.0.6 d + phpBB Group phpBB 2.0.6 c + phpBB Group phpBB 2.0.6 + phpBB Group phpBB 2.0.5 + phpBB Group phpBB 2.0.4 + phpBB Group phpBB 2.0.3 + phpBB Group phpBB 2.0.2 + phpBB Group phpBB 2.0.1 + phpBB Group phpBB 2.0 .0