CVE-2005-3689
published 2005-11-19CVE-2005-3689: post.php in XMB 1.9.2 allows remote attackers to obtain the installation path via an invalid fid parameter in a newthread action.
PriorityP416medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
2.56%
83.2th percentile
post.php in XMB 1.9.2 allows remote attackers to obtain the installation path via an invalid fid parameter in a newthread action.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| xmb_forum | xmb | — | — |
| xmb_forum | xmb | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://irannetjob.com/content/view/163/28/http://secunia.com/advisories/17642http://www.securityfocus.com/archive/1/417078/30/0/threadedhttp://www.securityfocus.com/bid/15489http://www.vupen.com/english/advisories/2005/2488https://docs.xmbforum2.com/index.php?title=Security_Issue_Historyhttp://irannetjob.com/content/view/163/28/http://secunia.com/advisories/17642http://www.securityfocus.com/archive/1/417078/30/0/threadedhttp://www.securityfocus.com/bid/15489http://www.vupen.com/english/advisories/2005/2488https://docs.xmbforum2.com/index.php?title=Security_Issue_History
2005-11-19
Published