CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-4259

Multiple SQL injection vulnerabilities in ASPBB 0.4 allow remote attackers to execute arbitrary SQL commands via the (1) TID parameter in topic.asp, (2) FORUM_ID parameter in forum.asp, and (3) PROFILE_ID parameter in profile.asp. NOTE: the provenance of this issue is unknown; the details are obtained solely from the BID.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 67.8%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.securityfocus.com/bid/15859
https://exchange.xforce.ibmcloud.com/vulnerabilities/40004
http://www.securityfocus.com/bid/15859
https://exchange.xforce.ibmcloud.com/vulnerabilities/40004

Products affected by CVE-2005-4259

Aspbb » Aspbb » Version: 0.4

cpe:2.3:a:aspbb:aspbb:0.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-4259

Products

Pricing

Contact Us