Vulnerabilities > CVE-2003-0331 - SQL-Injection vulnerability in Ttcms Ttforum 4

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

ttcms

critical

NVD

Published: 2003-06-09

Updated: 2016-10-18

Summary

SQL injection vulnerability in ttForum allows remote attackers to execute arbitrary SQL and gain ttForum Administrator privileges via the Ignorelist-Textfield argument in the Preferences page.

Vulnerable Configurations

Part	Description	Count
Application	Ttcms Ttcms Ttforum 4	1

References

http://marc.info/?l=bugtraq&m=105345273210334&w=2