CVE-2005-0775

high

Description

The reportpost action in misc.php for PhotoPost PHP 5.0 RC3 does not limit the logging data that is sent to the administrator, which allows remote attackers to send large amounts of email to the administrator.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/19676

http://www.securityfocus.com/bid/12779

http://marc.info/?l=bugtraq&m=111065868402859&w=2

Details

Source: Mitre, NVD

Published: 2005-05-02

Updated: 2017-07-11

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

Detections

Analytics