CVE-2005-2574
N/A
N/A
Summary
xmb.php in XMB Forum 1.9.1 extracts and defines all provided variables, which allows remote attackers to modify arbitrary server variables such as _SERVER[REMOTE_ADDR].
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://marc.info/?l=bugtraq&m=112361545228809&w=2
- http://forums.xmbforum.com/viewthread.php?tid=754523
- https://docs.xmbforum2.com/index.php?title=Security_Issue_History
References
- http://marc.info/?l=bugtraq&m=112361545228809&w=2
- http://forums.xmbforum.com/viewthread.php?tid=754523
- https://docs.xmbforum2.com/index.php?title=Security_Issue_History
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.