Tinyphpforum Schwachstellen

Zeitverlauf

Version

3.66
3.54
3.464
3.474
3.484

Massnahmen

Official Fix0
Temporary Fix0
Workaround2
Unavailable2
Not Defined2

Ausnutzbarkeit

High0
Functional2
Proof-of-Concept4
Unproven0
Not Defined0

Zugriffsart

Not Defined0
Physical0
Local0
Adjacent0
Network6

Authentisierung

Not Defined0
High0
Low0
None6

Benutzeraktivität

Not Defined0
Required2
None4

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤40
≤52
≤62
≤70
≤82
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤40
≤54
≤60
≤70
≤82
≤90
≤100

VulDB

≤10
≤20
≤30
≤40
≤52
≤62
≤70
≤82
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Hersteller

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploit 0-day

<1k0
<2k4
<5k2
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploit heute

<1k6
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploitmarktvolumen

Affected Versions (7): 3.5, 3.6, 3.46, 3.47, 3.48, 3.49, 3.499

Softwaretyp: Forum Software

VeröffentlichtBaseTempSchwachstelle0dayHeuteAusMasCTICVE
23.02.20077.37.1TinyPHPforum profile.php Directory Traversal$0-$5k$0-$5kFunctionalUnavailable0.00CVE-2006-7063
20.04.20064.34.2Ralph Capper Tinyphpforum profile.php Cross Site Scripting$0-$5k$0-$5kHighUnavailable0.00CVE-2006-1898
05.01.20065.35.0Ralph Capper TinyPHPForum User Account profile.php Directory Traversal$0-$5k$0-$5kProof-of-ConceptNot Defined0.00CVE-2006-0104
05.01.20065.34.5Ralph Capper TinyPHPForum [username].hash Information Disclosure$0-$5k$0-$5kProof-of-ConceptWorkaround0.00CVE-2006-0103
05.01.20064.34.1Ralph Capper TinyPHPForum action.php Cross Site Scripting$0-$5kWird berechnetProof-of-ConceptNot Defined0.00CVE-2006-0102

ZurückÜbersichtWeiter

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!