CVE-2005-3543

Published Nov 16, 2005

Last updated a day ago

CVSS info 6.8

Overview

Description: SQL injection vulnerability in search.php in Phorum 5.0.0alpha through 5.0.20, when register_globals is enabled, allows remote attackers to execute arbitrary SQL commands via the forum_ids parameter.
Source: cve@mitre.org
NVD status: Deferred

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.8
Impact score: 6.4
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-89

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.0_alpha:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "26E2C5A7-8B52-4BDF-80F1-5D45AEBE6E25"
          },
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.1_alpha:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0E8DF602-0A22-45A9-A286-C237180701C7"
          },
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.2_alpha:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AB109C36-BF0F-41E3-A1F4-0DB264BD4A55"
          },
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.3_beta:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A31EA2D-2B01-4928-9B3E-9D666FD2758B"
          },
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.4_beta:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E87DE16C-7C68-4DA8-9BD9-C61D74E61D6E"
          },
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.4a_beta:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5001527E-FE93-4BE7-BF79-7717D64CAF2B"
          },
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.5_beta:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D15ED599-6B84-4E03-8BA4-36E1D55F1F75"
          },
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.6_beta:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D491A2B9-949A-4A56-A41F-23A222C03BA4"
          },
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.7_beta:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "01CFDB0B-6FBD-49F3-8238-81E92661297E"
          },
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.7a_beta:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EC73A23F-2399-41B0-B6BD-289DF63F2C6A"
          },
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.8_rc:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AD59DD99-1FC7-498B-9EA1-1AA8FE132EEE"
          },
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1655572D-7D56-4D9D-9E0F-A67DF23FC934"
          },
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "387E0B83-B240-4922-8C57-CE0CDB000888"
          },
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CF5B09FF-92DF-4F8D-9A7B-E5086E2B954D"
          },
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D02321D7-2F3E-40F9-9A76-CFF339C93199"
          },
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3B908D49-F64A-488F-95F3-163AB9DAB02D"
          },
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.13a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1A26F8E5-0FFE-473D-BDA1-2D5340B5A4A5"
          },
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0FF0655C-7C83-4363-A444-993B35D7A7EA"
          },
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.14a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B3D0F7C4-902D-4186-8EFF-3876D6D6633E"
          },
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F87C476-6A55-4B19-97B0-24204E96A63E"
          },
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.16:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8ACC6DD4-384B-44DE-9BC7-6F1DD374E6B0"
          },
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.17:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "17D0AC3E-97F7-4A13-8E65-7E424D055E38"
          },
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.18:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "04B508F8-CFCC-4841-BF70-1ABB28EB1ABC"
          },
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.19:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C365D62D-ACB1-44D3-935D-F79A79642684"
          },
          {
            "criteria": "cpe:2.3:a:phorum:phorum:5.0.20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F4B45305-FF8B-42F8-A726-F8604BADC323"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References