CVE-2005-3871 in JBBinformazioni

Riassunto

di MITRE

Multiple SQL injection vulnerabilities in Joels Bulletin board (JBB) 0.9.9rc3 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) nr parameter in topiczeigen.php, (2) forum and (3) zeigeseite parameters in showforum.php, (4) forum parameter in newtopic.php, and (5) tidnr parameter in neuerbeitrag.php.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

29/11/2005

Divulgazione

29/11/2005

Moderazione

accettato

Voce

VDB-27144

CPE

pronto

CWE

CWE-89 (confermato)

CVSS

7.3 (VulDB)

EPSS

0.01409

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2005-3871
NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-3871
CVE Details	https://www.cvedetails.com/cve/CVE-2005-3871/

◂ Precedente Visione D'ensemble Il prossimo ▸

Want to know what is going to be exploited?

We predict KEV entries!