Description phpBB 2.0.19 and earlier allows remote attackers to cause a denial of service (application crash) by (1) registering many users through profile.php or (2) using search.php to search in a certain way that confuses the database.
CVSS vector AV:N/AC:L/C:N/I:N/A:P Exploitability: 10.0 | Impact: 2.9 Complexity: Low
Confidentiality: None
Integrity: None
Affected Packages1 packages
🔴 Vulnerability Details1 GHSA GHSA-j4gj-7wfh-5pg2: phpBB 2 ↗ 2022-05-01 ▶
💥 Exploits & PoCs1 Exploit-DB BlazeVideo HDTV Player 2.1 - '.PLF' Local Buffer Overflow ↗ 2006-12-01 ▶
💬 Community6 Bugzilla A number of tomcat issues ↗ 2007-05-09 ▶ Bugzilla CVE-2005-2090 multiple tomcat issues (CVE-2007-0450 CVE-2006-7195 CVE-2006-7196 CVE-2007-1858 CVE-2006-3835 CVE-2005-3510 CVE-2005-4838) ↗ 2007-04-30 ▶ Bugzilla CVE-2005-2090 multiple tomcat issues (CVE-2007-0450 CVE-2006-7195 CVE-2006-7196 CVE-2007-1858 CVE-2006-3835) ↗ 2007-04-19 ▶ Bugzilla CVE-2005-2090 multiple tomcat issues (CVE-2007-0450 CVE-2006-7195) ↗ 2007-04-19 ▶ Bugzilla CVE-2005-2090 multiple tomcat issues (CVE-2007-0450 CVE-2006-7195) ↗ 2007-04-19 ▶ Show 1 more