{
  "id": "CVE-2005-2193",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2005-07-11T04:00:00.000",
  "lastModified": "2016-10-18T03:25:43.880",
  "vulnStatus": "Modified",
  "descriptions": [
    {
      "lang": "en",
      "value": "SQL injection vulnerability in the user profile edit module in profile.php for PunBB 1.2.5 and earlier allows remote attackers to execute arbitrary SQL statements via the temp array, which is not initialized before it is used and prevents the attacker-supplied portions of the array from being properly escaped."
    }
  ],
  "metrics": {
    "cvssMetricV2": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "2.0",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
          "accessVector": "NETWORK",
          "accessComplexity": "LOW",
          "authentication": "NONE",
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "availabilityImpact": "PARTIAL",
          "baseScore": 7.5
        },
        "baseSeverity": "HIGH",
        "exploitabilityScore": 10.0,
        "impactScore": 6.4,
        "acInsufInfo": false,
        "obtainAllPrivilege": false,
        "obtainUserPrivilege": false,
        "obtainOtherPrivilege": true,
        "userInteractionRequired": false
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:punbb:punbb:1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "92F62C7C-EA7A-40B2-A8A0-5FEA69DF321B"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:punbb:punbb:1.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "8827471A-6FCC-48A6-BBAA-6DC82EA42EB4"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:punbb:punbb:1.0_alpha:*:*:*:*:*:*:*",
              "matchCriteriaId": "C68B349F-F76D-49D2-95DA-C8670E32530A"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:punbb:punbb:1.0_beta1:*:*:*:*:*:*:*",
              "matchCriteriaId": "FB336F6C-E81A-43C2-A252-36A192D9CADD"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:punbb:punbb:1.0_beta2:*:*:*:*:*:*:*",
              "matchCriteriaId": "91EBBB6B-A4F7-45A3-8BAB-26CEBCD3156E"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:punbb:punbb:1.0_beta3:*:*:*:*:*:*:*",
              "matchCriteriaId": "53C4E00F-E370-4DD1-B760-8AA0CEC4E536"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:punbb:punbb:1.0_rc1:*:*:*:*:*:*:*",
              "matchCriteriaId": "00082231-3168-4FCC-807B-8AD3DBBFCE92"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:punbb:punbb:1.0_rc2:*:*:*:*:*:*:*",
              "matchCriteriaId": "B77FF770-BEB4-4320-AA45-399A5CC6540A"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:punbb:punbb:1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "E04494D1-FE7F-431C-8242-A0591A5D0A6A"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:punbb:punbb:1.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "A97DA335-4815-4608-84D5-67F4E539D8F0"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:punbb:punbb:1.1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "9481F02E-2523-4599-A39D-3ACE518CEC35"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:punbb:punbb:1.1.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "01C976DD-47E4-48CA-AF99-93D0653D31F0"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:punbb:punbb:1.1.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "A1AAB3BF-EBFA-4F55-A3D4-0B26F749D91E"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:punbb:punbb:1.1.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "7277A122-5963-4E7F-BA1A-62B19AF804EB"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:punbb:punbb:1.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "05BCF8A0-5530-4B36-8CEA-5330307C74CC"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:punbb:punbb:1.2.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "C8EDF1AE-B415-4B5B-80CD-0B96AFA21D81"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:punbb:punbb:1.2.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "DDBA41AF-C817-476A-8ED1-57808D0B678C"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:punbb:punbb:1.2.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "C353C194-328F-4C4C-9773-F06A0FA3978C"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "http://marc.info/?l=bugtraq&m=112084384928950&w=2",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://www.hardened-php.net/advisory-082005.php",
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ]
    },
    {
      "url": "http://www.punbb.org/",
      "source": "cve@mitre.org"
    }
  ]
}