Multiple SQL injection vulnerabilities in PunBB 1.2.1 allow remote attackers to execute arbitrary SQL commands via the (1) language parameter to register.php, (2) change email feature in profile.php, (3) posts or (4) topics parameter to moderate.php.
References
Link | Resource |
---|---|
http://marc.info/?l=bugtraq&m=110927754230666&w=2 | |
http://secunia.com/advisories/14394 | Patch Vendor Advisory |
http://secunia.com/advisories/14538 | Patch Vendor Advisory |
http://www.punbb.org/changelogs/1.2.1_to_1.2.2.txt | |
http://www.securityfocus.com/bid/12652 | Exploit Patch |
https://exchange.xforce.ibmcloud.com/vulnerabilities/19473 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2005-02-27T05:00:00
Updated: 2017-07-10T14:57:01
Reserved: 2005-02-27T00:00:00
Link: CVE-2005-0569
JSON object: View
NVD Information
Status : Modified
Published: 2005-05-02T04:00:00.000
Modified: 2017-07-11T01:32:20.843
Link: CVE-2005-0569
JSON object: View
Redhat Information
No data.
CWE