SQL injection vulnerability in the verify_email function in Woltlab Burning Board 2.x and earlier allows remote attackers to execute arbitrary SQL commands via the $email variable.Referenceshttp://www.gulftech.org/?node=research&article_id=00075-05162005http://www.vupen.com/english/advisories/2005/0558http://www.attrition.org/pipermail/vim/2005-May/000047.htmlhttp://secunia.com/advisories/15395http://archives.neohapsis.com/archives/bugtraq/2005-05/0199.htmlhttp://www.osvdb.org/16575
