Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2009-4467
HistoryDec 30, 2009 - 8:00 p.m.

CVE-2009-4467

2009-12-3020:00:01
CWE-20
[email protected]
web.nvd.nist.gov
3

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:N/I:P/A:N

AI Score

6.5

Confidence

Low

EPSS

0.002

Percentile

54.0%

JSON

misc.php in DeluxeBB 1.3 allows remote attackers to register accounts without a valid email address via a valemail action with the valmem set to a pre-assigned user ID, which is visible from a memberlist action.

Affected configurations

Nvd
Node
deluxebbdeluxebbMatch1.3
VendorProductVersionCPE
deluxebbdeluxebb1.3cpe:2.3:a:deluxebb:deluxebb:1.3:*:*:*:*:*:*:*

Related

prion 1
cvelist 1
cve 1
seebug 1
exploitdb 1
openvas 2
prion
prion
Deserialization of untrusted data
2009-12-30 20:00:00
cvelist
cvelist
CVE-2009-4467
2009-12-30 19:00:00
cve
cve
CVE-2009-4467
2009-12-30 20:00:01
seebug
seebug
DeluxeBB存在多个安全漏洞
2010-01-06 00:00:00
exploitdb
exploitdb
DeluxeBB 1.3 - Multiple Vulnerabilities
2009-12-22 00:00:00
openvas
openvas
DeluxeBB Multiple Vulnerabilities
2010-01-22 00:00:00
DeluxeBB Multiple Vulnerabilities
2010-01-22 00:00:00

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:N/I:P/A:N

AI Score

6.5

Confidence

Low

EPSS

0.002

Percentile

54.0%

JSON
Related for NVD:CVE-2009-4467
prion1cvelist1cve1seebug1exploitdb1openvas2