CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-1615

viewforum.php in Ultimate PHP Board (UPB) 1.8 through 1.9.6 may allow remote attackers to read sensitive data via the postorder parameter, which is not properly handled by textdb.inc.php, possibly due to a SQL injection vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 54.5%

CVSS Severity

CVSS v2 Score 7.5

References

http://marc.info/?l=bugtraq&m=111600262424876&w=2
http://www.securityfocus.com/bid/13622
http://marc.info/?l=bugtraq&m=111600262424876&w=2
http://www.securityfocus.com/bid/13622

Products affected by CVE-2005-1615

Ultimate Php Board » Ultimate Php Board » Version: 1.8

cpe:2.3:a:ultimate_php_board:ultimate_php_board:1.8
Ultimate Php Board » Ultimate Php Board » Version: 1.8.2

cpe:2.3:a:ultimate_php_board:ultimate_php_board:1.8.2
Ultimate Php Board » Ultimate Php Board » Version: 1.9

cpe:2.3:a:ultimate_php_board:ultimate_php_board:1.9
Ultimate Php Board » Ultimate Php Board » Version: 1.9.6

cpe:2.3:a:ultimate_php_board:ultimate_php_board:1.9.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-1615

Products

Pricing

Contact Us