← CVECheck
HomeVulnerabilities

CVE-2001-1472 — MEDIUM severity vulnerability (SQL injection vulnerability in prefs.php in phpBB 1.4.0 and)

SQL injection vulnerability in prefs.php in phpBB 1.4.0 and 1.4.1 allows remote authenticated users to execute arbitrary SQL commands and gain administrative access via the viewemail parameter.

CVE IDCVE-2001-1472
SeverityMEDIUM
CVSS score4.6
CVSS vectorAV:L/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2001-08-03
Last modified2026-04-16
DescriptionSQL injection vulnerability in prefs.php in phpBB 1.4.0 and 1.4.1 allows remote authenticated users to execute arbitrary SQL commands and gain administrative access via the viewemail parameter.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →