Vulnerability Details CVE-2005-3394
Multiple SQL injection vulnerabilities in forum.php in oaboard forum 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) channel parameter in the topics module and (2) topic parameter in the posting module.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 65.3%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/17373
- http://www.osvdb.org/20420
- http://www.securityfocus.com/archive/1/415299
- http://www.securityfocus.com/bid/15245
- http://www.vupen.com/english/advisories/2005/2258
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22932
- http://secunia.com/advisories/17373
- http://www.osvdb.org/20420
- http://www.securityfocus.com/archive/1/415299
- http://www.securityfocus.com/bid/15245
- http://www.vupen.com/english/advisories/2005/2258
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22932