Lucene search

K
cve[email protected]CVE-2005-4612
HistoryDec 31, 2005 - 5:00 a.m.

CVE-2005-4612

2005-12-3105:00:00
NVD-CWE-Other
web.nvd.nist.gov
20
vubb
alpha rc1
sql injection
remote attackers
viewforum.php
viewtopic.php
usercp.php
security
cve-2005-4612
nvd

9.5 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

74.3%

Multiple SQL injection vulnerabilities in VUBB alpha rc1 allow remote attackers to execute arbitrary SQL commands via the (1) f parameter to viewforum.php, (2) t parameter to viewtopic.php, and (3) view parameter to usercp.php.

CPENameOperatorVersion
vubb:vubbvubbeqalpha_rc1

9.5 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

74.3%