Vulnerability Details CVE-2004-1982
Post.pl in YaBB 1 Gold SP 1.2 allows remote attackers to modify records in the board's .txt file via carriage return characters in the subject field.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 69.5%
CVSS Severity
CVSS v2 Score 5.0
References
- http://marc.info/?l=bugtraq&m=108360430703935&w=2
- http://secunia.com/advisories/12609
- http://www.securityfocus.com/bid/10263
- http://www.yabbforum.com/community/YaBB.pl?board=general%3Baction=display%3Bnum=1093133233
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16050
- http://marc.info/?l=bugtraq&m=108360430703935&w=2
- http://secunia.com/advisories/12609
- http://www.securityfocus.com/bid/10263
- http://www.yabbforum.com/community/YaBB.pl?board=general%3Baction=display%3Bnum=1093133233
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16050