CVE-2005-1201
Public Exploits 1
ExploitDB · 1 EDB-43823#CVE-2005-1201 [webapps]
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2005-1201
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Multiple directory traversal vulnerabilities in AZ Bulletin board (AZbb) before 1.0.08 allow (1) remote authenticated users with administrative privileges to delete arbitrary files via a .. (dot dot) in the URL to admin_avatar.php or admin_attachment.php or (2) remote attackers to enumerate files via a .. (dot dot) in the attachment parameter to attachment.php, which displays a different message when a file exists or does not exist.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
MAZ Bulletin board (AZbb) 1.0.08目录遍历漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
MAZ Bulletin board (AZbb) 1.0.08版本中的多个目录遍历漏洞,允许(1)具有管理员权限的远程验证用户通过admin_avatar.php或admin_attachment.php的URL中的..(参数中包含'..')来删除任意文件,或允许(2)远程攻击者通过attachment.php的attachment参数中的..(参数中包含'..')来枚举文件,从而在文件存在或不存在的情况下显示相反的消息。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2005-1201
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2005-1201
请登录查看更多情报信息。
Vendor Advisories for CVE-2005-1201 (3)
Mailing List Discussions for CVE-2005-1201 (1)
Other References for CVE-2005-1201 (2)
- http://azbb.cyaccess.com/azbb.php?1091778548x_refsource_CONFIRM
- http://www.gulftech.org/?node=research&article_id=00068-04192005x_refsource_MISC
Same Patch Batch · n/a · 2005-04-21 · 83 CVEs total
| CVE-2001-1466 | VanDyke SecureCRT缓冲区溢出漏洞 | |
| CVE-2001-1476 | SSH用户密码猜测漏洞 | |
| CVE-2001-1463 | SolarWinds Serv-U File Server 加密问题漏洞 | |
| CVE-2001-1464 | Crystal Reports密码获得漏洞 | |
| CVE-2001-1462 | RSA SecurID WebID调试方式信息泄露漏洞 | |
| CVE-2001-1459 | OpenSSH PAM会话逃避漏洞 | |
| CVE-2001-1458 | Novell Groupwise任意文件取回漏洞 | |
| CVE-2001-1457 | CrazyWWWBoard缓冲区溢出漏洞 | |
| CVE-2001-1456 | 基于Unix的Gauntlet Firewall和WebShield CSMAP以及smap/smapd缓冲区溢出漏洞 | |
| CVE-2001-1460 | PostNuke未认证的用户登录漏洞 | |
| CVE-2001-1465 | SurfControl SuperScout绕过过滤漏洞 | |
| CVE-2001-1467 | expect漏洞 | |
| CVE-2001-1468 | phpSecurePages包括文件任意命令执行漏洞 | |
| CVE-2001-1469 | SSH1 RC4消息修改漏洞 | |
| CVE-2001-1470 | SSH1 IDEA密码无侦查块修改漏洞 | |
| CVE-2001-1471 | phpBB Page Header远程任意命令执行漏洞 | |
| CVE-2001-1472 | PHPBB远程SQL注入操作漏洞 | |
| CVE-2001-1473 | SSH-1协议私钥计算漏洞 | |
| CVE-2001-1474 | SSH连接重定向漏洞 | |
| CVE-2001-1475 | SSH消息重放漏洞 |
Showing top 20 of 83 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-9604
JeecgBoot AiragModelController access control - CVE-2026-9581
JeecgBoot add access control - CVE-2026-9580
JeecgBoot selectDepart LoginController.selectDepart access c - CVE-2026-9579
JeecgBoot SysUser userEdit user.getUsername access control - CVE-2026-9572
GPAC MP4Box media.c Media_GetSample memory leak
V. Comments for CVE-2005-1201
No comments yet