7.5

CVE-2005-0569

Exploit

EPSS 2.23%
Veröffentlicht 02.05.2005 04:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Multiple SQL injection vulnerabilities in PunBB 1.2.1 allow remote attackers to execute arbitrary SQL commands via the (1) language parameter to register.php, (2) change email feature in profile.php, (3) posts or (4) topics parameter to moderate.php.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 9

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Punbb ≫ Punbb Version1.2.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	2.23%	0.84

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://marc.info/?l=bugtraq&m=110927754230666&w=2

http://secunia.com/advisories/14394

Patch

Vendor Advisory

http://secunia.com/advisories/14538

Patch

Vendor Advisory

http://www.punbb.org/changelogs/1.2.1_to_1.2.2.txt

http://www.securityfocus.com/bid/12652

Patch

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/19473

https://nvd.nist.gov/vuln/detail/CVE-2005-0569

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2005-0569

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2005-0569

EUVD