7.5
CVE-2005-1615
- EPSS 0.32%
- Veröffentlicht 16.05.2005 04:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Loginviewforum.php in Ultimate PHP Board (UPB) 1.8 through 1.9.6 may allow remote attackers to read sensitive data via the postorder parameter, which is not properly handled by textdb.inc.php, possibly due to a SQL injection vulnerability.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ultimate Php Board ≫ Ultimate Php Board Version1.8
Ultimate Php Board ≫ Ultimate Php Board Version1.8.2
Ultimate Php Board ≫ Ultimate Php Board Version1.9
Ultimate Php Board ≫ Ultimate Php Board Version1.9.6
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.32% | 0.52 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|