CVE Vulnerability

CVE-2007-3591

Unspecified vulnerability in Profile.php in Elite Bulletin Board before 1.0.10 allows remote attackers to modify profile information via unspecified vectors related to "a remote form," probably related to direct requests and missing authorization checks.

5 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 10 / Impact : 2.9

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

Scope

References
Link Resource
http://sourceforge.net/project/shownotes.php?release_id=520558&group_id=175118 Patch
http://www.securityfocus.com/bid/24763
http://secunia.com/advisories/25926 Vendor Advisory
http://osvdb.org/37819
https://exchange.xforce.ibmcloud.com/vulnerabilities/35261
Configurations

Configuration 1

cpe:2.3:a:elite_bulletin_board:elite_bulletin_board:1.0.9:*:*:*:*:*:*:*
cpe:2.3:a:elite_bulletin_board:elite_bulletin_board:1.0.8:*:*:*:*:*:*:*
Information

Published : 2007-07-06 06:30

Updated : 2017-07-29 01:32

NVD link : CVE-2007-3591

Mitre link : CVE-2007-3591

Products Affected
No products.
CWE
NVD-CWE-Other