Published: 31/12/2003 Updated: 11/07/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

index.php in Tritanium Bulletin Board 1.2.3 allows remote malicious users to read and reply to arbitrary messages by modifying the thread_id, forum_id, and sid parameters.

Vulnerable Product	Search on Vulmon	Subscribe to Product
tritanium scripts tritanium bulletin board 1.2.1
tritanium scripts tritanium bulletin board 1.2.3
tritanium scripts tritanium bulletin board 1.1 final
tritanium scripts tritanium bulletin board 1.2
tritanium scripts tritanium bulletin board 1.2.2
tritanium scripts tritanium bulletin board 0.994 beta
tritanium scripts tritanium bulletin board 0.999 beta
tritanium scripts tritanium bulletin board 1.0 beta
tritanium scripts tritanium bulletin board 0.993 beta

source: wwwsecurityfocuscom/bid/8944/info It has been reported that Tritanium Bulletin Board may be prone to an access validation error that may allow a remote attacker to to gain unauthorized access to threads A remote attacker may be able to access sensitive data by modifying the URL and supplying a value for thread_id, forum_id, and s ...

NVD-CWE-Other http://archives.neohapsis.com/archives/bugtraq/2003-10/0348.html http://www.securityfocus.com/bid/8944 http://www.osvdb.org/2770 http://secunia.com/advisories/10135 https://exchange.xforce.ibmcloud.com/vulnerabilities/13587 https://nvd.nist.gov https://www.exploit-db.com/exploits/23319/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2003-1162

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect