Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ikonboard.com ikonboard vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2004-1406
SQL injection vulnerability in ikonboard.cgi in Ikonboard 3.1.0 up to and including 3.1.3 allows remote malicious users to inject arbitrary SQL commands via the (1) st or (2) keywords parameter.
Ikonboard.com Ikonboard 3.0.1
Ikonboard.com Ikonboard 3.1.3
Ikonboard.com Ikonboard 3.1.1
Ikonboard.com Ikonboard 3.1.2a
1 EDB exploit
NA
CVE-2002-0328
Cross-site scripting vulnerability in Ikonboard 3.0.1 allows remote malicious users to execute arbitrary script as other Ikonboard users and steal cookies via Javascript in an IMG tag.
Ikonboard.com Ikonboard 3.0.1
Ikonboard.com Ikonboard 2.17
1 EDB exploit
NA
CVE-2003-0770
FUNC.pm in IkonBoard 3.1.2a and previous versions, including 3.1.1, does not properly cleanse the "lang" cookie when it contains illegal characters, which allows remote malicious users to execute arbitrary code when the cookie is inserted into a Perl "eval" st...
Ikonboard.com Ikonboard 3.1.1
Ikonboard.com Ikonboard 3.1.2a
2 EDB exploits
NA
CVE-2001-0360
Directory traversal vulnerability in help.cgi in Ikonboard 2.1.7b and previous versions allows a remote malicious user to read arbitrary files via a .. (dot dot) attack in the helpon parameter.
Ikonboard.com Ikonboard
1 EDB exploit
NA
CVE-2001-0841
Directory traversal vulnerability in Search.cgi in Ikonboard ib219 and previous versions allows remote malicious users to overwrite files and gain privileges via .. (dot dot) sequences in the amembernamecookie cookie.
Ikonboard.com Ikonboard
NA
CVE-2001-0076
register.cgi in Ikonboard 2.1.7b and previous versions allows remote malicious users to execute arbitrary commands via the SEND_MAIL parameter, which overwrites an internal program variable that references a program to be executed.
Ikonboard.com Ikonboard 2.1.7b
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started