Unrated severityNVD Advisory· Published Jun 23, 2006· Updated Apr 16, 2026

CVE-2006-2915

Description

Multiple SQL injection vulnerabilities in DeluxeBB 1.06 allow remote attackers to execute arbitrary SQL commands via the (1) hideemail, (2) languagex, (3) xthetimeoffset, and (4) xthetimeformat parameters during account registration.

Affected products

Deluxebb/Deluxebb
cpe:2.3:a:deluxebb:deluxebb:1.06:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/20152nvdVendor Advisory
secunia.com/secunia_research/2006-44/advisorynvdVendor Advisory
securityreason.com/securityalert/1134nvd
securitytracker.com/idnvd
www.osvdb.org/26457nvd
www.securityfocus.com/archive/1/437228/100/100/threadednvd
www.securityfocus.com/archive/1/438597/100/0/threadednvd
www.securityfocus.com/bid/18453nvd
www.vupen.com/english/advisories/2006/2347nvd
exchange.xforce.ibmcloud.com/vulnerabilities/27091nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000