Vulnerability Details CVE-2004-1968
The readmsg action in myhome.php in Open Bulletin Board (OpenBB) 1.0.6 and earlier allows remote attackers to read arbitrary messages by modifying the id parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.039
EPSS Ranking 87.8%
CVSS Severity
CVSS v2 Score 5.0
References
- http://marc.info/?l=bugtraq&m=108301983206107&w=2
- http://secunia.com/advisories/11481
- http://securitytracker.com/id?1009935
- http://www.securityfocus.com/bid/10217
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15970
- http://marc.info/?l=bugtraq&m=108301983206107&w=2
- http://secunia.com/advisories/11481
- http://securitytracker.com/id?1009935
- http://www.securityfocus.com/bid/10217
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15970
Products affected by CVE-2004-1968
-
cpe:2.3:a:openbb:openbb:1.0_.0_beta1
-
cpe:2.3:a:openbb:openbb:1.0_.0_rc1
-
cpe:2.3:a:openbb:openbb:1.0_.0_rc2
-
cpe:2.3:a:openbb:openbb:1.0_.0_rc3
-
cpe:2.3:a:openbb:openbb:1.0_.5
-
cpe:2.3:a:openbb:openbb:1.0_.6