CVE-2005-2193 in PunBBinfo

Summary

SQL injection vulnerability in the user profile edit module in profile.php for PunBB 1.2.5 and earlier allows remote attackers to execute arbitrary SQL statements via the temp array, which is not initialized before it is used and prevents the attacker-supplied portions of the array from being properly escaped.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

07/10/2005

Disclosure

07/11/2005

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-89 (Confirmed)

CVSS

7.3

EPSS

0.00487

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2005-2193
NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-2193
CVE Details	https://www.cvedetails.com/cve/CVE-2005-2193/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!