← Back

CVE-2005-1051

nvd nist
Published: May 2, 2005Modified: Apr 16, 2026

JSON object

Loading...
6.5
Vector
AV:N/AC:L/Au:S/C:P/I:P/A:P
Exploitability: 8.0 / Impact: 6.4
Source: NVD

Description

SQL injection vulnerability in profile.php in PunBB 1.2.4 allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a change_email action.

Affected (18)

Products: Punbb: Punbb
Punbb
1 product
Punbb
Configuration A
18 vulnerable
Vulnerable SoftwareAffected Versions
Punbb
Punbb
Version 1.0.1
Punbb
Version 1.0
Punbb
Version 1.0_alpha
Punbb
Version 1.0_beta1
Punbb
Version 1.0_beta2
Punbb
Version 1.0_beta3
Punbb
Version 1.0_rc1
Punbb
Version 1.0_rc2
Punbb
Version 1.1.1
Punbb
Version 1.1.2
Punbb
Version 1.1.3
Punbb
Version 1.1.4
Punbb
Version 1.1.5
Punbb
Version 1.1
Punbb
Version 1.2.1
Punbb
Version 1.2.2
Punbb
Version 1.2.3
Punbb
Version 1.2.4

References (6)

Source: cve@mitre.org
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
ExploitPatch
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitPatch

Timeline

No history available yet.