Vulnerability Details CVE-2005-3799
phpBB 2.0.18 allows remote attackers to obtain sensitive information via a large SQL query, which generates an error message that reveals SQL syntax or the full installation path.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 63.2%
CVSS Severity
CVSS v2 Score 5.0
References
- http://marc.info/?l=bugtraq&m=113200740718682&w=2
- http://marc.info/?l=bugtraq&m=113210133012767&w=2
- http://securityreason.com/achievement_exploitalert/4
- http://marc.info/?l=bugtraq&m=113200740718682&w=2
- http://marc.info/?l=bugtraq&m=113210133012767&w=2
- http://securityreason.com/achievement_exploitalert/4
Products affected by CVE-2005-3799
-
cpe:2.3:a:phpbb_group:phpbb:2.0.18