CVE Vulnerabilities

CVE-2004-0291

Published: Nov 23, 2004 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

SQL injection vulnerability in post.php for YaBB SE 1.5.4 and 1.5.5 allows remote attackers to obtain hashed passwords via the quote parameter.

Affected Software

Name Vendor Start Version End Version
Yabb Yabb 1.5.4 1.5.4
Yabb Yabb 1.5.5 1.5.5

References