CVE-2005-0775

Published: May 2, 2005Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

The reportpost action in misc.php for PhotoPost PHP 5.0 RC3 does not limit the logging data that is sent to the administrator, which allows remote attackers to send large amounts of email to the administrator.

Affected (1)

Products: Photopost: Photopost Php Pro

Photopost

1 product

Photopost Php Pro

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Photopost Photopost Php Pro	Version 5.0_rc3

References (8)

http://marc.info/?l=bugtraq&m=111065868402859&w=2

Source: cve@mitre.org

http://secunia.com/advisories/14576

Source: cve@mitre.org

Exploit

http://www.securityfocus.com/bid/12779

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/19676

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=111065868402859&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/14576

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

http://www.securityfocus.com/bid/12779

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/19676

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.