← back
CVE-2001-0527

CVE-2001-0527

EPSS 4.5%
DCScripts DCForum versions 2000 and earlier allow a remote attacker to gain additional privileges by inserting pipe symbols (|) and newlines into the last name in the registration form, which will create an extra entry in the registration database.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/20849unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/bugtraq/2001-05/0122.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/6538http://www.dcscripts.com/dcforum/dcfNews/167.htmlhttp://www.osvdb.org/480http://www.securityfocus.com/bid/2728