Lucene search
HistoryMar 06, 2009 - 6:50 a.m.
CVE-2009-0768
cve-2009-0768
sql injection
yapbb 1.2
forumhop.php
nvd
8.7 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
30.1%
SQL injection vulnerability in forumhop.php in YapBB 1.2 and earlier allows remote attackers to execute arbitrary SQL commands via the forumID parameter in a next action.
Affected configurations
Node
yapbbyapbbRange≤1.2
ORyapbbyapbbMatch1.1
ORyapbbyapbbMatch1.2beta2
| CPE | Name | Operator | Version |
|---|---|---|---|
| yapbb:yapbb | yapbb | le | 1.2 |
| yapbb:yapbb | yapbb | eq | 1.1 |
Related
cvelist
cvelist
CVE-2009-0768
2009-03-03 18:00:00
prion
prion
Sql injection
2009-03-06 06:50:00
nvd
nvd
CVE-2009-0768
2009-03-06 06:50:20
8.7 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
30.1%
Related for CVE-2009-0768