Vulnerability Details CVE-2003-1162
index.php in Tritanium Bulletin Board 1.2.3 allows remote attackers to read and reply to arbitrary messages by modifying the thread_id, forum_id, and sid parameters.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.04
EPSS Ranking 88.0%
CVSS Severity
CVSS v2 Score 5.0
References
- http://archives.neohapsis.com/archives/bugtraq/2003-10/0348.html
- http://secunia.com/advisories/10135
- http://www.osvdb.org/2770
- http://www.securityfocus.com/bid/8944
- https://exchange.xforce.ibmcloud.com/vulnerabilities/13587
- http://archives.neohapsis.com/archives/bugtraq/2003-10/0348.html
- http://secunia.com/advisories/10135
- http://www.osvdb.org/2770
- http://www.securityfocus.com/bid/8944
- https://exchange.xforce.ibmcloud.com/vulnerabilities/13587
Products affected by CVE-2003-1162
-
cpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:0.993_beta
-
cpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:0.994_beta
-
cpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:0.999_beta
-
cpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:1.0_beta
-
cpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:1.1_final
-
cpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:1.2
-
cpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:1.2.1
-
cpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:1.2.2
-
cpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:1.2.3