CVE-2005-3022
 
Severity Score
7.5
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Multiple SQL injection vulnerabilities in vBulletin 3.0.9 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) announcement parameter to announcement.php, (2) userid parameter to user.php, (3) calendar parameter to admincalendar.php, (4) cronid parameter to cronlog.php, (5) usergroupid parameter to email.php, (6) help parameter to help.php, (7) rvt parameter to language.php, (8) keep parameter to phrase.php, or (9) updateprofilepic parameter to usertools.php.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2005-09-21 CVE Reserved
- 2005-09-21 CVE Published
- 2024-08-07 CVE Updated
- 2024-08-07 First Exploit
- 2024-08-28 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
CAPEC
References (2)
URL | Tag | Source |
---|---|---|
http://marc.info/?l=bugtraq&m=112715150320677&w=2 | Mailing List |
URL | Date | SRC |
---|---|---|
http://morph3us.org/advisories/20050917-vbulletin-3.0.8.txt | 2024-08-07 |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 1.0.1 Search vendor "Jelsoft" for product "Vbulletin" and version "1.0.1" | lite |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 2.0.3 Search vendor "Jelsoft" for product "Vbulletin" and version "2.0.3" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 2.0_rc2 Search vendor "Jelsoft" for product "Vbulletin" and version "2.0_rc2" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 2.0_rc3 Search vendor "Jelsoft" for product "Vbulletin" and version "2.0_rc3" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 2.2.0 Search vendor "Jelsoft" for product "Vbulletin" and version "2.2.0" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 2.2.1 Search vendor "Jelsoft" for product "Vbulletin" and version "2.2.1" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 2.2.2 Search vendor "Jelsoft" for product "Vbulletin" and version "2.2.2" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 2.2.3 Search vendor "Jelsoft" for product "Vbulletin" and version "2.2.3" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 2.2.4 Search vendor "Jelsoft" for product "Vbulletin" and version "2.2.4" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 2.2.5 Search vendor "Jelsoft" for product "Vbulletin" and version "2.2.5" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 2.2.6 Search vendor "Jelsoft" for product "Vbulletin" and version "2.2.6" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 2.2.7 Search vendor "Jelsoft" for product "Vbulletin" and version "2.2.7" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 2.2.8 Search vendor "Jelsoft" for product "Vbulletin" and version "2.2.8" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 2.2.9 Search vendor "Jelsoft" for product "Vbulletin" and version "2.2.9" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 2.3.0 Search vendor "Jelsoft" for product "Vbulletin" and version "2.3.0" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 2.3.2 Search vendor "Jelsoft" for product "Vbulletin" and version "2.3.2" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 2.3.3 Search vendor "Jelsoft" for product "Vbulletin" and version "2.3.3" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 2.3.4 Search vendor "Jelsoft" for product "Vbulletin" and version "2.3.4" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 3.0 Search vendor "Jelsoft" for product "Vbulletin" and version "3.0" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 3.0.1 Search vendor "Jelsoft" for product "Vbulletin" and version "3.0.1" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 3.0.2 Search vendor "Jelsoft" for product "Vbulletin" and version "3.0.2" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 3.0.3 Search vendor "Jelsoft" for product "Vbulletin" and version "3.0.3" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 3.0.4 Search vendor "Jelsoft" for product "Vbulletin" and version "3.0.4" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 3.0.5 Search vendor "Jelsoft" for product "Vbulletin" and version "3.0.5" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 3.0.6 Search vendor "Jelsoft" for product "Vbulletin" and version "3.0.6" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 3.0.7 Search vendor "Jelsoft" for product "Vbulletin" and version "3.0.7" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 3.0.8 Search vendor "Jelsoft" for product "Vbulletin" and version "3.0.8" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 3.0.9 Search vendor "Jelsoft" for product "Vbulletin" and version "3.0.9" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 3.0_beta_2 Search vendor "Jelsoft" for product "Vbulletin" and version "3.0_beta_2" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 3.0_beta_3 Search vendor "Jelsoft" for product "Vbulletin" and version "3.0_beta_3" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 3.0_beta_4 Search vendor "Jelsoft" for product "Vbulletin" and version "3.0_beta_4" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 3.0_beta_5 Search vendor "Jelsoft" for product "Vbulletin" and version "3.0_beta_5" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 3.0_beta_6 Search vendor "Jelsoft" for product "Vbulletin" and version "3.0_beta_6" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 3.0_beta_7 Search vendor "Jelsoft" for product "Vbulletin" and version "3.0_beta_7" | - |
Affected
| ||||||
Jelsoft Search vendor "Jelsoft" | Vbulletin Search vendor "Jelsoft" for product "Vbulletin" | 3.0_gamma Search vendor "Jelsoft" for product "Vbulletin" and version "3.0_gamma" | - |
Affected
|