Lucene search
HistoryMay 02, 2005 - 4:00 a.m.
CVE-2005-1051
cve-2005-1051
sql injection
punbb 1.2.4
profile.php
remote authenticated users
nvd
7.9 High
AI Score
Confidence
Low
6.5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
52.9%
SQL injection vulnerability in profile.php in PunBB 1.2.4 allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a change_email action.
Affected configurations
Node
punbbpunbbMatch1.0
ORpunbbpunbbMatch1.0.1
ORpunbbpunbbMatch1.0_alpha
ORpunbbpunbbMatch1.0_beta1
ORpunbbpunbbMatch1.0_beta2
ORpunbbpunbbMatch1.0_beta3
ORpunbbpunbbMatch1.0_rc1
ORpunbbpunbbMatch1.0_rc2
ORpunbbpunbbMatch1.1
ORpunbbpunbbMatch1.1.1
ORpunbbpunbbMatch1.1.2
ORpunbbpunbbMatch1.1.3
ORpunbbpunbbMatch1.1.4
ORpunbbpunbbMatch1.1.5
ORpunbbpunbbMatch1.2.1
ORpunbbpunbbMatch1.2.2
ORpunbbpunbbMatch1.2.3
ORpunbbpunbbMatch1.2.4
Related
nessus
nessus
PunBB profile.php id Parameter SQL Injection
2005-04-08 00:00:00
nvd
nvd
CVE-2005-1051
2005-05-02 04:00:00
cvelist
cvelist
CVE-2005-1051
2005-04-12 04:00:00
7.9 High
AI Score
Confidence
Low
6.5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
52.9%
Related for CVE-2005-1051