CVE-2005-4461

Published Dec 21, 2005

Last updated 6 years ago

Overview

Description: SQL injection vulnerability in index.php in Beehive Forum 0.6.2 and earlier allows remote attackers to execute arbitrary SQL commands via the user_sess parameter.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:beehive_forum:beehive_forum:0.1:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "B3C479F7-639D-4C3D-9449-E94426C3B1C3"
          },
          {
            "criteria": "cpe:2.3:a:beehive_forum:beehive_forum:0.1.1:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "4EDD1988-4C10-4F78-A84A-AAFCB1DFFB6E"
          },
          {
            "criteria": "cpe:2.3:a:beehive_forum:beehive_forum:0.2:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "BE8FB1E8-E4E3-4C72-9012-72D60E5C3B49"
          },
          {
            "criteria": "cpe:2.3:a:beehive_forum:beehive_forum:0.3:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "BB948F88-6C9F-44B6-850F-9F6B02738A8F"
          },
          {
            "criteria": "cpe:2.3:a:beehive_forum:beehive_forum:0.3.1:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "400EACD2-95CE-404E-B8F8-21A92A6D7817"
          },
          {
            "criteria": "cpe:2.3:a:beehive_forum:beehive_forum:0.4:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6071EAB1-B425-43D7-ACDE-009972279603"
          },
          {
            "criteria": "cpe:2.3:a:beehive_forum:beehive_forum:0.5:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "9D73944F-A924-4801-A819-730AB165171C"
          },
          {
            "criteria": "cpe:2.3:a:beehive_forum:beehive_forum:0.6.2:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E1B59256-123E-4EEF-AB9D-665C47989A25"
          },
          {
            "criteria": "cpe:2.3:a:beehive_forum:beehive_forum:0.6rc1:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F4543096-BA8B-41A0-B0F5-CE92A063898E"
          },
          {
            "criteria": "cpe:2.3:a:beehive_forum:beehive_forum:0.6rc2:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C8E19DFA-F5D4-4D64-8B5D-65E10B7E1698"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References