Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0275


Vulnerability Score 5.1 5.1
CVE Id CVE-2003-0275
Last Modified 05 Sep 2008 04:33:55
Published 16 Jun 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE



SSI.php in YaBB SE 1.5.2 allows remote attackers to execute arbitrary PHP code by modifying the sourcedir parameter to reference a URL on a remote web server that contains the code.

Vulnerable Systems


  • Yabb 1.5.2


BUGTRAQ - 20030509 II-Labs Advisory: Remote code execution in YaBBse 1.5.2 (php version)

Last Updated: 27 May 2016 10:37:50