Vulnerabilities > CVE-2005-2571 - Remote Security vulnerability in FunkBoard
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE Summary
FunkBoard 0.66CF, and possibly earlier versions, does not properly restrict access to the (1) admin/mysql_install.php and (2) admin/pg_install.php scripts, which allows attackers to obtain the database username and password or inject arbitrary PHP code into info.php.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |