CVE-2005-3079

Опубликовано: 27 сент. 2005

Источник: nvd

CVSS2: 4.6

EPSS Низкий

Описание

PunBB before 1.2.8 allows remote attackers to perform "code inclusion" via the user language selection.

Ссылки

http://secunia.com/advisories/16908
Patch
Vendor Advisory
http://www.punbb.org/changelogs/1.2.7_to_1.2.8.txt
http://secunia.com/advisories/16908
Patch
Vendor Advisory
http://www.punbb.org/changelogs/1.2.7_to_1.2.8.txt

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:punbb:punbb:1.0:*:*:*:*:*:*:*

cpe:2.3:a:punbb:punbb:1.0.1:*:*:*:*:*:*:*

cpe:2.3:a:punbb:punbb:1.0_alpha:*:*:*:*:*:*:*

cpe:2.3:a:punbb:punbb:1.0_beta1:*:*:*:*:*:*:*

cpe:2.3:a:punbb:punbb:1.0_beta1a:*:*:*:*:*:*:*

cpe:2.3:a:punbb:punbb:1.0_beta2:*:*:*:*:*:*:*

cpe:2.3:a:punbb:punbb:1.0_beta3:*:*:*:*:*:*:*

cpe:2.3:a:punbb:punbb:1.0_rc1:*:*:*:*:*:*:*

cpe:2.3:a:punbb:punbb:1.0_rc2:*:*:*:*:*:*:*

cpe:2.3:a:punbb:punbb:1.1:*:*:*:*:*:*:*

cpe:2.3:a:punbb:punbb:1.1.1:*:*:*:*:*:*:*

cpe:2.3:a:punbb:punbb:1.1.2:*:*:*:*:*:*:*

cpe:2.3:a:punbb:punbb:1.1.3:*:*:*:*:*:*:*

cpe:2.3:a:punbb:punbb:1.1.4:*:*:*:*:*:*:*

cpe:2.3:a:punbb:punbb:1.1.5:*:*:*:*:*:*:*

cpe:2.3:a:punbb:punbb:1.2:*:*:*:*:*:*:*

cpe:2.3:a:punbb:punbb:1.2.1:*:*:*:*:*:*:*

cpe:2.3:a:punbb:punbb:1.2.2:*:*:*:*:*:*:*

cpe:2.3:a:punbb:punbb:1.2.3:*:*:*:*:*:*:*

cpe:2.3:a:punbb:punbb:1.2.4:*:*:*:*:*:*:*

cpe:2.3:a:punbb:punbb:1.2.5:*:*:*:*:*:*:*

cpe:2.3:a:punbb:punbb:1.2.6:*:*:*:*:*:*:*

cpe:2.3:a:punbb:punbb:1.2.7:*:*:*:*:*:*:*

EPSS

Процентиль: 67%

0.00541

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-9wm4-3c82-wjrj

github

почти 4 года назад