VYPR
Unrated severityNVD Advisory· Published Jun 29, 2005· Updated Jun 16, 2026

CVE-2005-2058

CVE-2005-2058

Description

Multiple SQL injection vulnerabilities in Infopop UBB.Threads before 6.5.2 Beta allow remote attackers to execute arbitrary SQL commands via the Number parameter to (1) download.php, (2) modifypost.php, (3) mailthread.php, or (4) notifymod.php, (5) month or (6) year parameter to calendar.php, (7) message parameter to viewmessage.php, (8) main parameter to addfav.php, or (9) posted parameter to grabnext.php.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

21
  • cpe:2.3:a:ubbcentral:ubb.threads:6.0:*:*:*:*:*:*:*+ 19 more
    • cpe:2.3:a:ubbcentral:ubb.threads:6.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.2.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.4:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.4.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.4.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.4.4:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.5:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.5.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.5.1.1:*:*:*:*:*:*:*
  • Range: <6.5.2 Beta

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.