Unrated severityNVD Advisory· Published Aug 16, 2005· Updated Apr 16, 2026

CVE-2005-2574

Description

xmb.php in XMB Forum 1.9.1 extracts and defines all provided variables, which allows remote attackers to modify arbitrary server variables such as _SERVER[REMOTE_ADDR].

Affected products

Xmb Forum/Xmb
cpe:2.3:a:xmb_forum:xmb:1.9.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

forums.xmbforum.com/viewthread.phpnvd
marc.infonvd
docs.xmbforum2.com/index.phpnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000