Vulnerabilities > CVE-2005-3079 - Remote Security vulnerability in Punbb

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

SINGLE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

high complexity

nessus

NVD

Published: 2005-09-27

Updated: 2008-09-05

Summary

PunBB before 1.2.8 allows remote attackers to perform "code inclusion" via the user language selection.

Part	Description	Count
Application	Punbb Punbb Punbb 1.0 Punbb Punbb 1.0.1 Punbb Punbb 1.0_Alpha Punbb Punbb 1.0_Beta1 Punbb Punbb 1.0_Beta1A Punbb Punbb 1.0_Beta2 Punbb Punbb 1.0_Beta3 Punbb Punbb 1.0_Rc1 Punbb Punbb 1.0_Rc2 Punbb Punbb 1.1 Punbb Punbb 1.1.1 Punbb Punbb 1.1.2 Punbb Punbb 1.1.3 Punbb Punbb 1.1.4 Punbb Punbb 1.1.5 Punbb Punbb 1.2 Punbb Punbb 1.2.1 Punbb Punbb 1.2.2 Punbb Punbb 1.2.3 Punbb Punbb 1.2.4 Punbb Punbb 1.2.5 Punbb Punbb 1.2.6 Punbb Punbb 1.2.7	23

NASL family	CGI abuses
NASL id	PUNBB_128.NASL
description	According to its banner, the version of PunBB installed on the remote host suffers from several flaws. - A File Include Vulnerability The application fails to validate the
last seen	2020-06-01
modified	2020-06-02
plugin id	19775
published	2005-09-23
reporter	This script is Copyright (C) 2005-2018 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/19775
title	PunBB < 1.2.8 Multiple Vulnerabilities