Lucene search

[email protected]NVD:CVE-2003-1215

HistoryDec 29, 2003 - 5:00 a.m.

CVE-2003-1215

2003-12-2905:00:00

[email protected]

web.nvd.nist.gov

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.5

Confidence

Low

EPSS

0.001

Percentile

25.1%

JSON

SQL injection vulnerability in groupcp.php for phpBB 2.0.6 and earlier allows group moderators to perform unauthorized activities via the sql_in parameter.

Affected configurations

Nvd

Node

phpbb_groupphpbbMatch1.0.0

phpbb_groupphpbbMatch1.2.0

phpbb_groupphpbbMatch1.2.1

phpbb_groupphpbbMatch1.4.0

phpbb_groupphpbbMatch1.4.1

phpbb_groupphpbbMatch1.4.2

phpbb_groupphpbbMatch1.4.4

phpbb_groupphpbbMatch2.0.0

phpbb_groupphpbbMatch2.0.1

phpbb_groupphpbbMatch2.0.2

phpbb_groupphpbbMatch2.0.3

phpbb_groupphpbbMatch2.0.4

phpbb_groupphpbbMatch2.0.5

phpbb_groupphpbbMatch2.0.6

phpbb_groupphpbbMatch2.0_beta1

phpbb_groupphpbbMatch2.0_rc1

phpbb_groupphpbbMatch2.0_rc2

phpbb_groupphpbbMatch2.0_rc3

phpbb_groupphpbbMatch2.0_rc4

VendorProductVersionCPE
phpbb_groupphpbb1.0.0cpe:2.3:a:phpbb_group:phpbb:1.0.0:*:*:*:*:*:*:*
phpbb_groupphpbb1.2.0cpe:2.3:a:phpbb_group:phpbb:1.2.0:*:*:*:*:*:*:*
phpbb_groupphpbb1.2.1cpe:2.3:a:phpbb_group:phpbb:1.2.1:*:*:*:*:*:*:*
phpbb_groupphpbb1.4.0cpe:2.3:a:phpbb_group:phpbb:1.4.0:*:*:*:*:*:*:*
phpbb_groupphpbb1.4.1cpe:2.3:a:phpbb_group:phpbb:1.4.1:*:*:*:*:*:*:*
phpbb_groupphpbb1.4.2cpe:2.3:a:phpbb_group:phpbb:1.4.2:*:*:*:*:*:*:*
phpbb_groupphpbb1.4.4cpe:2.3:a:phpbb_group:phpbb:1.4.4:*:*:*:*:*:*:*
phpbb_groupphpbb2.0.0cpe:2.3:a:phpbb_group:phpbb:2.0.0:*:*:*:*:*:*:*
phpbb_groupphpbb2.0.1cpe:2.3:a:phpbb_group:phpbb:2.0.1:*:*:*:*:*:*:*
phpbb_groupphpbb2.0.2cpe:2.3:a:phpbb_group:phpbb:2.0.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
phpbb_group	phpbb	1.0.0	cpe:2.3:a:phpbb_group:phpbb:1.0.0:::::::*
phpbb_group	phpbb	1.2.0	cpe:2.3:a:phpbb_group:phpbb:1.2.0:::::::*
phpbb_group	phpbb	1.2.1	cpe:2.3:a:phpbb_group:phpbb:1.2.1:::::::*
phpbb_group	phpbb	1.4.0	cpe:2.3:a:phpbb_group:phpbb:1.4.0:::::::*
phpbb_group	phpbb	1.4.1	cpe:2.3:a:phpbb_group:phpbb:1.4.1:::::::*
phpbb_group	phpbb	1.4.2	cpe:2.3:a:phpbb_group:phpbb:1.4.2:::::::*
phpbb_group	phpbb	1.4.4	cpe:2.3:a:phpbb_group:phpbb:1.4.4:::::::*
phpbb_group	phpbb	2.0.0	cpe:2.3:a:phpbb_group:phpbb:2.0.0:::::::*
phpbb_group	phpbb	2.0.1	cpe:2.3:a:phpbb_group:phpbb:2.0.1:::::::*
phpbb_group	phpbb	2.0.2	cpe:2.3:a:phpbb_group:phpbb:2.0.2:::::::*

Rows per page:

1-10 of 191

References

marc.info/?l=bugtraq&m=107273069130885&w=2

www.phpbb.com/phpBB/viewtopic.php?f=14&t=161943

www.securityfocus.com/bid/9314

exchange.xforce.ibmcloud.com/vulnerabilities/14096

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.5

Confidence

Low

EPSS

0.001

Percentile

25.1%

JSON

Related for NVD:CVE-2003-1215

cve1 cvelist1 nessus1