CVE-2003-0275

Medium

5.1/10

Summary

SSI.php in YaBB SE 1.5.2 allows remote attackers to execute arbitrary PHP code by modifying the sourcedir parameter to reference a URL on a remote web server that contains the code.

Access Complexity: HIGH
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: PARTIAL
Confidentiality Impact: PARTIAL
Availability Impact: PARTIAL

References

Advisory Timeline

Published Jun 16, 2003

CVE-2003-0275

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS