7.5
CVE-2004-1555
- EPSS 1.88%
- Veröffentlicht 31.12.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:07:56
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginMultiple SQL injection vulnerabilities in BroadBoard Instant ASP Message Board allow remote attackers to run arbitrary SQL commands via the (1) keywords parameter to search.asp, (2) handle parameter to profile.asp, (3) txtUserHandle parameter to reg2.asp or (4) txtUserEmail parameter to forgot.asp.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.88% | 0.768 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://marc.info/?l=bugtraq&m=109630777608244&w=2
http://secunia.com/advisories/12658
http://securitytracker.com/id?1011419
http://www.securityfocus.com/bid/11250
https://exchange.xforce.ibmcloud.com/vulnerabilities/17498
https://exchange.xforce.ibmcloud.com/vulnerabilities/17500
https://exchange.xforce.ibmcloud.com/vulnerabilities/17501
https://exchange.xforce.ibmcloud.com/vulnerabilities/17502