CVE-2002-1505

Опубликовано: 02 апр. 2003

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

SQL injection vulnerability in board.php for WoltLab Burning Board (wBB) 2.0 RC 1 and earlier allows remote attackers to modify the database and possibly gain privileges via the boardid parameter.

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2002-09/0083.html
Exploit
Patch
Vendor Advisory
http://www.iss.net/security_center/static/10069.php
Vendor Advisory
http://www.securityfocus.com/bid/5675
Exploit
Vendor Advisory
http://archives.neohapsis.com/archives/bugtraq/2002-09/0083.html
Exploit
Patch
Vendor Advisory
http://www.iss.net/security_center/static/10069.php
Vendor Advisory
http://www.securityfocus.com/bid/5675
Exploit
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:woltlab:burning_board:*:*:*:*:*:*:*:*

Версия до 2.0_rc1 (включая)

cpe:2.3:a:woltlab:burning_board:2.0_beta_3:*:*:*:*:*:*:*

cpe:2.3:a:woltlab:burning_board:2.0_beta_4:*:*:*:*:*:*:*

cpe:2.3:a:woltlab:burning_board:2.0_beta_5:*:*:*:*:*:*:*

EPSS

Процентиль: 55%

0.00329

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-v67r-p67m-4f23

github

больше 3 лет назад