miniBB < 1.7f index.php user Parameter SQL Injection
High Nessus Network Monitor Plugin ID 2407
SynopsisThe remote web server contains a script that is vulnerable to a SQL injection attack.
DescriptionThe remote host is using the miniBB forum management system.
According to its version number, this forum is vulnerable to a SQL injection attack that may allow an attacker to execute arbitrary SQL statements against the remote database.
SolutionUpgrade to miniBB 1.7f or higher.