7.5
CVE-2005-3326
- EPSS 2.42%
- Veröffentlicht 27.10.2005 10:02:00
- Zuletzt bearbeitet 16.06.2026 22:16:43
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
SQL injection vulnerability in usercp.php in MyBulletinBoard (MyBB) allows remote attackers to execute arbitrary SQL commands via the awayday parameter.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Mybulletinboard ≫ Mybulletinboard Version1.0_pr2
Mybulletinboard ≫ Mybulletinboard Versionrc4
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.42% | 0.82 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://community.mybboard.net/showthread.php?tid=4507&pid=27223#pid27223
http://www.osvdb.org/20700
http://www.securityfocus.com/archive/1/414672
http://www.securityfocus.com/bid/15204