CVE-2004-1982

CVE-2004-1982

EPSS 1.5%

Post.pl in YaBB 1 Gold SP 1.2 allows remote attackers to modify records in the board's .txt file via carriage return characters in the subject field.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://marc.info/?l=bugtraq&m=108360430703935&w=2 http://secunia.com/advisories/12609 https://exchange.xforce.ibmcloud.com/vulnerabilities/16050 http://www.securityfocus.com/bid/10263 http://www.yabbforum.com/community/YaBB.pl?board=general%3Baction=display%3Bnum=1093133233