CVE-2006-0450

2006-01-2700:00:00

mitre

www.cve.org

AI Score

6.7

Confidence

High

EPSS

0.021

Percentile

89.2%

JSON

phpBB 2.0.19 and earlier allows remote attackers to cause a denial of service (application crash) by (1) registering many users through profile.php or (2) using search.php to search in a certain way that confuses the database.

References

h4cky0u.org/viewtopic.php?t=637

securityreason.com/securityalert/368

www.h4cky0u.org/advisories/HYSA-2006-001-phpbb.txt

www.securityfocus.com/archive/1/423030/100/0/threaded

exchange.xforce.ibmcloud.com/vulnerabilities/24327