Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2005-2193

Published: 11/07/2005 Updated: 18/10/2016
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Punbb

Vulnerability Summary

SQL injection vulnerability in the user profile edit module in profile.php for PunBB 1.2.5 and previous versions allows remote malicious users to execute arbitrary SQL statements via the temp array, which is not initialized before it is used and prevents the attacker-supplied portions of the array from being properly escaped.

Vulnerable Product Search on Vulmon Subscribe to Product

punbb punbb 1.0_beta3

punbb punbb 1.0_rc1

punbb punbb 1.1.5

punbb punbb 1.2.1

punbb punbb 1.0.1

punbb punbb 1.0_alpha

punbb punbb 1.1.1

punbb punbb 1.1.2

punbb punbb 1.2.4

punbb punbb 1.0_beta1

punbb punbb 1.0_beta2

punbb punbb 1.1.3

punbb punbb 1.1.4

punbb punbb 1.0

punbb punbb 1.0_rc2

punbb punbb 1.1

punbb punbb 1.2.2

punbb punbb 1.2.3

References

NVD-CWE-Otherhttp://www.hardened-php.net/advisory-082005.phphttp://www.punbb.org/http://marc.info/?l=bugtraq&m=112084384928950&w=2https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4644unprivilegedCVE-2024-3494CVE-2024-22460CVE-2024-26026CVE-2024-23473firewallCVE-2024-28889XML external entity
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook