Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2012-4034
HistoryAug 12, 2012 - 12:55 a.m.

CVE-2012-4034

2012-08-1200:55:01
CWE-89
mitre
web.nvd.nist.gov
32
cve-2012-4034
pbboard
sql injection
remote attackers
arbitrary sql commands
security vulnerability

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.7

Confidence

Low

EPSS

0.003

Percentile

68.8%

JSON

Multiple SQL injection vulnerabilities in PBBoard 2.1.4 allow remote attackers to execute arbitrary SQL commands via the (1) username parameter to the send page, (2) email parameter to the forget page, (3) password parameter to the forum_archive page, (4) section parameter to the management page, (5) section_id parameter to the managementreply page, (6) member_id parameter to the new_password page, or (7) subjectid parameter to the tags page to index.php.

Affected configurations

Nvd
Node
pbboardpbboardMatch2.1.4
VendorProductVersionCPE
pbboardpbboard2.1.4cpe:2.3:a:pbboard:pbboard:2.1.4:*:*:*:*:*:*:*

Related

cvelist 2
nvd 2
dsquare 2
exploitdb 1
prion 2
cve 1
packetstorm 1
htbridge 1
securityvulns 2
zdt 1
cvelist
cvelist
CVE-2012-4034
2012-08-12 00:00:00
CVE-2014-9215
2014-12-05 15:00:00
nvd
nvd
CVE-2012-4034
2012-08-12 00:55:01
CVE-2014-9215
2014-12-05 15:59:08
dsquare
dsquare
PBBoard 2.1.4 email SQL Injection
2014-11-30 00:00:00
PBBoard 2.1.4 username SQL Injection
2014-11-30 00:00:00
exploitdb
exploitdb
PBBoard - 'index.php' Multiple SQL Injections
2012-08-08 00:00:00
prion
prion
Sql injection
2012-08-12 00:55:00
Sql injection
2014-12-05 15:59:00
cve
cve
CVE-2014-9215
2014-12-05 15:59:08
packetstorm
packetstorm
PBBoard 2.1.4 SQL Injection / Improper Authentication / Broken Access Control
2012-08-09 00:00:00
htbridge
htbridge
Multiple vulnerabilities in PBBoard
2012-07-18 00:00:00
securityvulns
securityvulns
Multiple vulnerabilities in PBBoard
2012-08-13 00:00:00
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2012-08-13 00:00:00
zdt
zdt
PBBoard 2.1.4 SQL Injection / Improper Authentication / Broken Access Control
2012-08-11 00:00:00

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.7

Confidence

Low

EPSS

0.003

Percentile

68.8%

JSON
Related for CVE-2012-4034
cvelist2nvd2dsquare2exploitdb1prion2cve1packetstorm1htbridge1securityvulns2zdt1