CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2013-2057

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1270%
EPSS Percentile17.47th
Published2020年2月11日
Last Modified2024年11月21日

Vulnerability Description

YaBB through 2.5.2: 'guestlanguage' Cookie Parameter Local File Include Vulnerability

Affected Platforms (CPE)

📦
Yabb

Yabb

<= 2.5.2

References & Advisories

🔗 http://www.openwall.com/lists/oss-security/2013/05/05/1
🔗 http://www.securityfocus.com/bid/59643
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/84034
🔗 http://www.openwall.com/lists/oss-security/2013/05/05/1
🔗 http://www.securityfocus.com/bid/59643
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/84034

相關漏洞威脅

CVE-2004-240310.0

Cross-site request forgery (CSRF) vulnerability in YaBB 1 GOLD SP 1.3.2 allows remote attackers to perform unauthorized actions as...

CVE-2007-320810.0

CRLF injection vulnerability in Yet another Bulletin Board (YaBB) 2.1 allows remote attackers to obtain administrative access via ...

CVE-2004-034310.0

Multiple SQL injection vulnerabilities in YaBB SE 1.5.4 through 1.5.5b allow remote attackers to execute arbitrary SQL via (1) the...

CVE-2002-01177.5

Cross-site scripting vulnerability in Yet Another Bulletin Board (YaBB) 1 Gold SP 1 and earlier allows remote attackers to execute...