← Back

CVE-2005-4687

nvd nist
Published: Dec 31, 2005Modified: Apr 16, 2026

JSON object

Loading...
5.0
Vector
AV:N/AC:L/Au:N/C:P/I:N/A:N
Exploitability: 10.0 / Impact: 2.9
Source: NVD

Description

PunBB 1.2.9, used alone or with F-ART BLOG:CMS, may trust a client's IP address as specified in the X-Forwarded-For HTTP header rather than the TCP/IP stack, which allows remote attackers to misrepresent their IP address by sending a modified header.

Affected (21)

F Art Agency
1 product
Blog Cms
Punbb
1 product
Punbb
Configuration A
21 vulnerable
Vulnerable SoftwareAffected Versions
F Art Agency
Blog Cms
Version 3.0
Blog Cms
Version 3.1.2
Blog Cms
Version 3.1.3
Blog Cms
Version 3.1.4
Blog Cms
Version 3.1
Blog Cms
Version 3.6.2
Blog Cms
Version 3.6.4
Blog Cms
Version 4.0.0
Blog Cms
Version 4.0.0a
Blog Cms
Version 4.0.0b
Blog Cms
Version 4.0.0c
Blog Cms
Version 4.0.0d
Punbb
Punbb
Version 1.2.1
Punbb
Version 1.2.2
Punbb
Version 1.2.3
Punbb
Version 1.2.4
Punbb
Version 1.2.5
Punbb
Version 1.2.6
Punbb
Version 1.2.7
Punbb
Version 1.2.8
Punbb
Version 1.2.9

References (8)

Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Patch
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Patch

Timeline

No history available yet.