CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-2574

xmb.php in XMB Forum 1.9.1 extracts and defines all provided variables, which allows remote attackers to modify arbitrary server variables such as _SERVER[REMOTE_ADDR].

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.7%

CVSS Severity

CVSS v2 Score 5.0

References

http://forums.xmbforum.com/viewthread.php?tid=754523
http://marc.info/?l=bugtraq&m=112361545228809&w=2
https://docs.xmbforum2.com/index.php?title=Security_Issue_History
http://forums.xmbforum.com/viewthread.php?tid=754523
http://marc.info/?l=bugtraq&m=112361545228809&w=2
https://docs.xmbforum2.com/index.php?title=Security_Issue_History

Products affected by CVE-2005-2574

Xmb Forum » Xmb » Version: 1.9.1

cpe:2.3:a:xmb_forum:xmb:1.9.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-2574

Products

Pricing

Contact Us