CVE-2004-1536

Опубликовано: 31 дек. 2004

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

SQL injection vulnerability in index.php in the ibProArcade module for Invision Power Board (IPB) 1.x and 2.x allows remote attackers to execute arbitrary SQL commands via the cat parameter.

Ссылки

http://marc.info/?l=bugtraq&m=110098512318132&w=2
http://secunia.com/advisories/13260
Vendor Advisory
http://securitytracker.com/id?1012292
Exploit
http://www.securityfocus.com/bid/11719
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/18180
http://marc.info/?l=bugtraq&m=110098512318132&w=2
http://secunia.com/advisories/13260
Vendor Advisory
http://securitytracker.com/id?1012292
Exploit
http://www.securityfocus.com/bid/11719
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/18180

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ipbproarcade:ipbproarcade:*:*:*:*:*:*:*:*

Версия до 2.5 (включая)

EPSS

Процентиль: 67%

0.0053

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-q44w-qm6r-g722

github

почти 4 года назад