What is the severity of CVE-2005-4602?

CVE-2005-4602 is classified as a medium severity vulnerability due to the potential for SQL injection, allowing unauthorized access to the database.

How do I fix CVE-2005-4602?

To fix CVE-2005-4602, upgrade MyBB to version 1.0.1 or later that includes the security patch addressing this vulnerability.

What systems are affected by CVE-2005-4602?

CVE-2005-4602 affects MyBB versions prior to 1.0.1, specifically including 1.0_rc1, 1.0_rc2, 1.0_rc3, and 1.0_rc4.

What type of attack can exploit CVE-2005-4602?

CVE-2005-4602 can be exploited through SQL injection, allowing attackers to execute arbitrary SQL commands via manipulated file attachments.

Is CVE-2005-4602 a known vulnerability?

Yes, CVE-2005-4602 has been documented and is a known vulnerability in earlier versions of MyBB.

Vulnerability/
CVE-2005-4602

high

7.5

CWE

NVD-CWE-Other 89

31/12/2005

2/1/2006

7/8/2024

CVE-2005-4602: SQL Injection

First published: Sat Dec 31 2005(Updated: )

SQL injection vulnerability in inc/function_upload.php in MyBB before 1.0.1 allows remote attackers to execute arbitrary SQL commands via the file extension of an uploaded file attachment.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Mybulletinboard Mybulletinboard	=1.0_rc4
Mybulletinboard Mybulletinboard	=1.00_rc4
Mybulletinboard Mybulletinboard	=rc3
Mybulletinboard Mybulletinboard	=1.00_rc3
Mybulletinboard Mybulletinboard	=rc2
Mybulletinboard Mybulletinboard	=rc1
Mybulletinboard Mybulletinboard	=1.00_rc4_security_patch
Mybulletinboard Mybulletinboard	=1.00_rc1
Mybulletinboard Mybulletinboard	=rc4
Mybulletinboard Mybulletinboard	=1.0_pr2
Mybulletinboard Mybulletinboard	=1.00_rc2
Mybulletinboard Mybulletinboard	=1.0_pr2
Mybulletinboard Mybulletinboard	=1.00_rc1
Mybulletinboard Mybulletinboard	=1.00_rc2
Mybulletinboard Mybulletinboard	=1.00_rc3
Mybulletinboard Mybulletinboard	=1.0_rc4
Mybulletinboard Mybulletinboard	=1.00_rc4
Mybulletinboard Mybulletinboard	=1.00_rc4_security_patch
Mybulletinboard Mybulletinboard	=rc1
Mybulletinboard Mybulletinboard	=rc2
Mybulletinboard Mybulletinboard	=rc3
Mybulletinboard Mybulletinboard	=rc4

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2005-4602?
CVE-2005-4602 is classified as a medium severity vulnerability due to the potential for SQL injection, allowing unauthorized access to the database.
How do I fix CVE-2005-4602?
To fix CVE-2005-4602, upgrade MyBB to version 1.0.1 or later that includes the security patch addressing this vulnerability.
What systems are affected by CVE-2005-4602?
CVE-2005-4602 affects MyBB versions prior to 1.0.1, specifically including 1.0_rc1, 1.0_rc2, 1.0_rc3, and 1.0_rc4.
What type of attack can exploit CVE-2005-4602?
CVE-2005-4602 can be exploited through SQL injection, allowing attackers to execute arbitrary SQL commands via manipulated file attachments.
Is CVE-2005-4602 a known vulnerability?
Yes, CVE-2005-4602 has been documented and is a known vulnerability in earlier versions of MyBB.

collector/nvd-historical
collector/nvd-index
agent/references
agent/type
agent/softwarecombine
agent/first-publish-date
collector/mitre-cve
source/MITRE
agent/author
agent/weakness
agent/last-modified-date
agent/severity
agent/tags
agent/event
agent/description
agent/source
vendor/mybulletinboard
canonical/mybulletinboard mybulletinboard
version/mybulletinboard mybulletinboard/1.0_rc4
version/mybulletinboard mybulletinboard/1.00_rc4
version/mybulletinboard mybulletinboard/rc3
version/mybulletinboard mybulletinboard/1.00_rc3
version/mybulletinboard mybulletinboard/rc2
version/mybulletinboard mybulletinboard/rc1
version/mybulletinboard mybulletinboard/1.00_rc4_security_patch
version/mybulletinboard mybulletinboard/1.00_rc1
version/mybulletinboard mybulletinboard/rc4
version/mybulletinboard mybulletinboard/1.0_pr2
version/mybulletinboard mybulletinboard/1.00_rc2

Frequently Asked Questions

What is the severity of CVE-2005-4602?
CVE-2005-4602 is classified as a medium severity vulnerability due to the potential for SQL injection, allowing unauthorized access to the database.
How do I fix CVE-2005-4602?
To fix CVE-2005-4602, upgrade MyBB to version 1.0.1 or later that includes the security patch addressing this vulnerability.
What systems are affected by CVE-2005-4602?
CVE-2005-4602 affects MyBB versions prior to 1.0.1, specifically including 1.0_rc1, 1.0_rc2, 1.0_rc3, and 1.0_rc4.
What type of attack can exploit CVE-2005-4602?
CVE-2005-4602 can be exploited through SQL injection, allowing attackers to execute arbitrary SQL commands via manipulated file attachments.
Is CVE-2005-4602 a known vulnerability?
Yes, CVE-2005-4602 has been documented and is a known vulnerability in earlier versions of MyBB.

CVE-2005-4602: SQL Injection

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2005-4602?

How do I fix CVE-2005-4602?

What systems are affected by CVE-2005-4602?

What type of attack can exploit CVE-2005-4602?

Is CVE-2005-4602 a known vulnerability?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2005-4602?

How do I fix CVE-2005-4602?

What systems are affected by CVE-2005-4602?

What type of attack can exploit CVE-2005-4602?

Is CVE-2005-4602 a known vulnerability?