Published: 31/12/2003 Updated: 11/07/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

index.php in Tritanium Bulletin Board 1.2.3 allows remote malicious users to read and reply to arbitrary messages by modifying the thread_id, forum_id, and sid parameters.

Vulnerable Product	Search on Vulmon	Subscribe to Product
tritanium scripts tritanium bulletin board 1.2.1
tritanium scripts tritanium bulletin board 1.2.2
tritanium scripts tritanium bulletin board 1.1_final
tritanium scripts tritanium bulletin board 1.2
tritanium scripts tritanium bulletin board 0.999_beta
tritanium scripts tritanium bulletin board 1.0_beta
tritanium scripts tritanium bulletin board 0.993_beta
tritanium scripts tritanium bulletin board 0.994_beta
tritanium scripts tritanium bulletin board 1.2.3

source: wwwsecurityfocuscom/bid/8944/info It has been reported that Tritanium Bulletin Board may be prone to an access validation error that may allow a remote attacker to to gain unauthorized access to threads A remote attacker may be able to access sensitive data by modifying the URL and supplying a value for thread_id, forum_id, and s ...

NVD-CWE-Other http://archives.neohapsis.com/archives/bugtraq/2003-10/0348.html http://www.securityfocus.com/bid/8944 http://www.osvdb.org/2770 http://secunia.com/advisories/10135 https://exchange.xforce.ibmcloud.com/vulnerabilities/13587 https://nvd.nist.gov https://www.exploit-db.com/exploits/23319/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2003-1162

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect