Lucene search

[email protected]NVD:CVE-2003-1176

HistoryDec 31, 2003 - 5:00 a.m.

CVE-2003-1176

2003-12-3105:00:00

[email protected]

web.nvd.nist.gov

6.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

6.6 Medium

AI Score

Confidence

Low

0.015 Low

EPSS

Percentile

86.9%

JSON

post_message_form.asp in Web Wiz Forums 6.34 through 7.5, when quote mode is used, allows remote attackers to read or write to private forums by modifying the FID (forum ID) parameter.

Affected configurations

NVD

Node

bdc_enterprisesweb_wiz_forumsMatch6.34

bdc_enterprisesweb_wiz_forumsMatch7.01

bdc_enterprisesweb_wiz_forumsMatch7.5

References

secunia.com/advisories/10137

securitytracker.com/id?1008100

www.osvdb.org/2768

www.securityfocus.com/archive/1/343175

www.securityfocus.com/archive/1/343314

www.securityfocus.com/bid/8957

exchange.xforce.ibmcloud.com/vulnerabilities/13581

6.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

6.6 Medium

AI Score

Confidence

Low

0.015 Low

EPSS

Percentile

86.9%

JSON

Related for NVD:CVE-2003-1176

cve1 cvelist1