ID CVE-2005-3328Type cveReporter NVDModified 2016-10-17T23:34:32
Description
PHP remote file inclusion vulnerability in common.php in PunBB 1.1.2 through 1.1.5 allows remote attackers to execute arbitrary code via the pun_root parameter.
{"id": "CVE-2005-3328", "bulletinFamily": "NVD", "title": "CVE-2005-3328", "description": "PHP remote file inclusion vulnerability in common.php in PunBB 1.1.2 through 1.1.5 allows remote attackers to execute arbitrary code via the pun_root parameter.", "published": "2005-10-27T06:02:00", "modified": "2016-10-17T23:34:32", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-3328", "reporter": "NVD", "references": ["http://www.securityfocus.com/bid/15175", "http://marc.info/?l=bugtraq&m=113017630505223&w=2", "http://securityreason.com/securityalert/107"], "cvelist": ["CVE-2005-3328"], "type": "cve", "lastseen": "2017-04-18T15:51:35", "history": [{"bulletin": {"assessment": {"href": "", "name": "", "system": ""}, "bulletinFamily": "NVD", "cpe": ["cpe:/a:punbb:punbb:1.1.5", "cpe:/a:punbb:punbb:1.1.3", "cpe:/a:punbb:punbb:1.1.4", "cpe:/a:punbb:punbb:1.1.2"], "cvelist": ["CVE-2005-3328"], "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "description": "PHP remote file inclusion vulnerability in common.php in PunBB 1.1.2 through 1.1.5 allows remote attackers to execute arbitrary code via the pun_root parameter.", "edition": 1, "hash": "1fcb76b1acfa533b8a1a13dbe38f8781f55171556be550803ab1417c12c9cf61", "hashmap": [{"hash": "2bb415b0ad02953f5ccb1e2d0c8c2a6a", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "scanner"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "c7fc98a38c9404bad0dfdd13da9c5b13", "key": "cvelist"}, {"hash": "56765472680401499c79732468ba4340", "key": "objectVersion"}, {"hash": "5daa97e75837ae1dd2b00aeac9196340", "key": "title"}, {"hash": "6fdbc8a61afbd81c82e0f56ffc98e6ee", "key": "cpe"}, {"hash": "6d3f4796275bb54c21a33b82f399cc6d", "key": "assessment"}, {"hash": "e5d275b3ebd62646b78320753699e02e", "key": "cvss"}, {"hash": "d8ca69b00d23bb53085dc4898e8485fe", "key": "modified"}, {"hash": "ea36065936002caeddaf9fd93c445e70", "key": "href"}, {"hash": "8113c790cbc959c2157f8defe51e8b16", "key": "published"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "f0016495f8f6b05477fd32fb9ca0ec89", "key": "references"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-3328", "id": "CVE-2005-3328", "lastseen": "2016-09-03T05:54:38", "modified": "2008-09-05T16:54:04", "objectVersion": "1.2", "published": "2005-10-27T06:02:00", "references": ["http://www.securityfocus.com/bid/15175", "http://securityreason.com/securityalert/107", "http://marc.theaimsgroup.com/?l=bugtraq&m=113017630505223&w=2"], "reporter": "NVD", "scanner": [], "title": "CVE-2005-3328", "type": "cve", "viewCount": 0}, "differentElements": ["references", "modified"], "edition": 1, "lastseen": "2016-09-03T05:54:38"}], "edition": 2, "hashmap": [{"key": "assessment", "hash": "6d3f4796275bb54c21a33b82f399cc6d"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "6fdbc8a61afbd81c82e0f56ffc98e6ee"}, {"key": "cvelist", "hash": "c7fc98a38c9404bad0dfdd13da9c5b13"}, {"key": "cvss", "hash": "e5d275b3ebd62646b78320753699e02e"}, {"key": "description", "hash": "2bb415b0ad02953f5ccb1e2d0c8c2a6a"}, {"key": "href", "hash": "ea36065936002caeddaf9fd93c445e70"}, {"key": "modified", "hash": "59255cfffbf1d68d8837e4d794367bd9"}, {"key": "objectVersion", "hash": "56765472680401499c79732468ba4340"}, {"key": "published", "hash": "8113c790cbc959c2157f8defe51e8b16"}, {"key": "references", "hash": "7358ca8df83bac5890669a8b8248e392"}, {"key": "reporter", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "scanner", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "5daa97e75837ae1dd2b00aeac9196340"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "05f0e74a2e9b86bd56f28bde113dbff7392a96213ffef5275ef26d76e5fd7644", "viewCount": 0, "objectVersion": "1.2", "cpe": ["cpe:/a:punbb:punbb:1.1.5", "cpe:/a:punbb:punbb:1.1.3", "cpe:/a:punbb:punbb:1.1.4", "cpe:/a:punbb:punbb:1.1.2"], "assessment": {"href": "", "name": "", "system": ""}, "scanner": [], "enchantments": {"score": {"value": 7.5, "vector": "NONE", "modified": "2017-04-18T15:51:35"}, "dependencies": {"references": [{"type": "osvdb", "idList": ["OSVDB:21582"]}], "modified": "2017-04-18T15:51:35"}, "vulnersScore": 7.5}}
{"osvdb": [{"lastseen": "2017-04-28T13:20:18", "bulletinFamily": "software", "description": "# No description provided by the source\n\n## References:\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-10/0266.html\n[CVE-2005-3328](https://vulners.com/cve/CVE-2005-3328)\nBugtraq ID: 15175\n", "modified": "2005-10-23T20:03:14", "published": "2005-10-23T20:03:14", "href": "https://vulners.com/osvdb/OSVDB:21582", "id": "OSVDB:21582", "title": "PunBB common.php pun_root Variable Remote File Inclusion", "type": "osvdb", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}]}
