Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2012-4035
HistoryAug 12, 2012 - 12:55 a.m.

CVE-2012-4035

2012-08-1200:55:00
CWE-264
[email protected]
web.nvd.nist.gov
26
cve-2012-4035
pbboard
remote attack
password change vulnerability
nvd

7.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.144 Low

EPSS

Percentile

95.7%

JSON

The new_password page in PBBoard 2.1.4 allows remote attackers to change the password of arbitrary user accounts via the member_id and new_password parameters to index.php.

CPENameOperatorVersion
pbboard:pbboardpbboardeq2.1.4

Related

prion 1
htbridge 1
securityvulns 2
packetstorm 1
prion
prion
Default credentials
2012-08-12 00:55:00
htbridge
htbridge
Multiple vulnerabilities in PBBoard
2012-07-18 00:00:00
securityvulns
securityvulns
Multiple vulnerabilities in PBBoard
2012-08-13 00:00:00
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2012-08-13 00:00:00
packetstorm
packetstorm
PBBoard 2.1.4 SQL Injection / Improper Authentication / Broken Access Control
2012-08-09 00:00:00

7.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.144 Low

EPSS

Percentile

95.7%

JSON
Related for CVE-2012-4035
prion1htbridge1securityvulns2packetstorm1