CVE-2006-5737

N/A Unknown
Published: November 06, 2006 Modified: April 23, 2026
View on NVD

Description

PunBB uses a predictable cookie_seed value that can be derived from the time of registration of the superadmin account (installation time), which might allow local users to perform unauthorized actions.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://securitytracker.com/id?1017131
Source: cve@mitre.org
http://www.osvdb.org/30134
Source: cve@mitre.org
http://www.securityfocus.com/archive/1/450055/100/0/threaded
Source: cve@mitre.org
http://www.wargan.org/index.php/2006/10/29/4-punbb-1213-multiple-vulnerabilities
Source: cve@mitre.org
http://securitytracker.com/id?1017131
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.osvdb.org/30134
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/archive/1/450055/100/0/threaded
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.wargan.org/index.php/2006/10/29/4-punbb-1213-multiple-vulnerabilities
Source: af854a3a-2127-422b-91ae-364da2661108

8 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
0.2%
36th percentile
Exploitation Status
Not in CISA KEV

Affected Vendors

punbb