Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mybulletinboard mybulletinboard 1.10 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-1716
Cross-site scripting (XSS) vulnerability in inc/functions_post.php in MyBB (aka MyBulletinBoard) 1.10 allows remote malicious users to inject arbitrary web script or HTML via a JavaScript event in a BBCode img tag. NOTE: the email vector is already covered by CVE-2006-1625, altho...
Mybulletinboard Mybulletinboard 1.10
NA
CVE-2006-1625
Cross-site scripting (XSS) vulnerability in inc/functions_post.php in MyBB (aka MyBulletinBoard) 1.10 allows remote malicious users to inject arbitrary web script or HTML via a JavaScript event in a BBCode email tag, as demonstrated using the onmousemove event.
Mybulletinboard Mybulletinboard 1.10
NA
CVE-2006-1345
polls.php in MyBB (aka MyBulletinBoard) 1.10 allows remote malicious users to obtain sensitive information via a vote action with an "option[]=null" parameter value, which reveals the path in an error message.
Mybulletinboard Mybulletinboard 1.10
NA
CVE-2006-1717
Cross-site scripting (XSS) vulnerability in newthread.php in MyBB (aka MyBulletinBoard) 1.10, when configured to permit new threads by unregistered users, allows remote malicious users to inject arbitrary web script or HTML via the username.
Mybulletinboard Mybulletinboard 1.10
NA
CVE-2006-1912
MyBB (MyBulletinBoard) 1.1.0 does not set the constant KILL_GLOBAL variable in (1) global.php and (2) inc/init.php, which allows remote malicious users to initialize arbitrary variables that are processed by an @extract command, which could then be leveraged to conduct cross-site...
Mybulletinboard Mybulletinboard 1.10
1 EDB exploit
NA
CVE-2006-1281
Cross-site scripting (XSS) vulnerability in member.php in MyBulletinBoard (MyBB) 1.04 allows remote malicious users to inject arbitrary web script or HTML via the url parameter, a different vulnerability than CVE-2006-1272. NOTE: 1.10 was later reported to be vulnerable.
Mybulletinboard Mybulletinboard 1.0 Pr2
Mybulletinboard Mybulletinboard 1.10
Mybulletinboard Mybulletinboard Rc1
Mybulletinboard Mybulletinboard Rc2
Mybulletinboard Mybulletinboard 1.0.1
Mybulletinboard Mybulletinboard 1.0.2
Mybulletinboard Mybulletinboard Rc3
Mybulletinboard Mybulletinboard Rc4
Mybulletinboard Mybulletinboard 1.0.3
Mybulletinboard Mybulletinboard 1.0.4
Mybulletinboard Mybulletinboard 1.0 Final
NA
CVE-2006-4972
Cross-site scripting (XSS) vulnerability in archive/index.php/forum-4.html in MyBB (aka MyBulletinBoard) allows remote malicious users to inject arbitrary web script or HTML via the navbits[][name] parameter.
Mybulletinboard Mybulletinboard 1.0.1
Mybulletinboard Mybulletinboard 1.1.1
Mybulletinboard Mybulletinboard 1.1.2
Mybulletinboard Mybulletinboard 1.20
Mybulletinboard Mybulletinboard 1.0 Rc2
Mybulletinboard Mybulletinboard 1.1
Mybulletinboard Mybulletinboard 1.10
Mybulletinboard Mybulletinboard 1.14
Mybulletinboard Mybulletinboard 1.0.2
Mybulletinboard Mybulletinboard 1.0.3
Mybulletinboard Mybulletinboard 1.0.4
Mybulletinboard Mybulletinboard 1.1.3
Mybulletinboard Mybulletinboard 1.1.4
Mybulletinboard Mybulletinboard 1.0 Final
Mybulletinboard Mybulletinboard 1.0 Preview Release 2
Mybulletinboard Mybulletinboard 1.1.5
Mybulletinboard Mybulletinboard 1.1.7
NA
CVE-2006-4971
MyBB (aka MyBulletinBoard) allows remote malicious users to obtain sensitive information via a direct request for inc/plugins/hello.php, which reveals the path in an error message.
Mybulletinboard Mybulletinboard 1.0.4
Mybulletinboard Mybulletinboard 1.0 Final
Mybulletinboard Mybulletinboard 1.1.4
Mybulletinboard Mybulletinboard 1.1.5
Mybulletinboard Mybulletinboard 1.0.2
Mybulletinboard Mybulletinboard 1.0.3
Mybulletinboard Mybulletinboard 1.1.2
Mybulletinboard Mybulletinboard 1.1.3
Mybulletinboard Mybulletinboard 1.0.1
Mybulletinboard Mybulletinboard 1.1
Mybulletinboard Mybulletinboard 1.1.1
Mybulletinboard Mybulletinboard 1.14
Mybulletinboard Mybulletinboard 1.20
Mybulletinboard Mybulletinboard 1.0 Preview Release 2
Mybulletinboard Mybulletinboard 1.0 Rc2
Mybulletinboard Mybulletinboard 1.1.7
Mybulletinboard Mybulletinboard 1.10
NA
CVE-2008-0382
Multiple eval injection vulnerabilities in MyBB 1.2.10 and previous versions allow remote malicious users to execute arbitrary code via the sortby parameter to (1) forumdisplay.php or (2) a results action in search.php.
Mybulletinboard Mybulletinboard 1.0
Mybulletinboard Mybulletinboard 1.0.1
Mybulletinboard Mybulletinboard 1.1.3
Mybulletinboard Mybulletinboard 1.1.4
Mybulletinboard Mybulletinboard 1.2.3
Mybulletinboard Mybulletinboard 1.2.5
Mybulletinboard Mybulletinboard 1.0.2
Mybulletinboard Mybulletinboard 1.0.3
Mybulletinboard Mybulletinboard 1.1.5
Mybulletinboard Mybulletinboard 1.1.7
Mybulletinboard Mybulletinboard 1.0.4
Mybulletinboard Mybulletinboard 1.0 Pr2
Mybulletinboard Mybulletinboard 1.1
Mybulletinboard Mybulletinboard 1.1.8
Mybulletinboard Mybulletinboard 1.10
Mybulletinboard Mybulletinboard 1.1.1
Mybulletinboard Mybulletinboard 1.1.2
Mybulletinboard Mybulletinboard 1.2
Mybulletinboard Mybulletinboard 1.2.10
2 EDB exploits
NA
CVE-2008-0787
SQL injection vulnerability in inc/datahandlers/pm.php in MyBB prior to 1.2.12 allows remote authenticated users to execute arbitrary SQL commands via the options[disablesmilies] parameter to private.php.
Mybulletinboard Mybulletinboard 1.0.2
Mybulletinboard Mybulletinboard 1.0.3
Mybulletinboard Mybulletinboard 1.1.4
Mybulletinboard Mybulletinboard 1.1.5
Mybulletinboard Mybulletinboard 1.2.11
Mybulletinboard Mybulletinboard 1.2.3
Mybulletinboard Mybulletinboard 1.0
Mybulletinboard Mybulletinboard 1.0.1
Mybulletinboard Mybulletinboard 1.1.2
Mybulletinboard Mybulletinboard 1.1.3
Mybulletinboard Mybulletinboard 1.2
Mybulletinboard Mybulletinboard 1.2.10
Mybulletinboard Mybulletinboard 1.1
Mybulletinboard Mybulletinboard 1.1.1
Mybulletinboard Mybulletinboard 1.1.8
Mybulletinboard Mybulletinboard 1.10
Mybulletinboard Mybulletinboard Rc3
Mybulletinboard Mybulletinboard Rc4
Mybulletinboard Mybulletinboard 1.0.4
Mybulletinboard Mybulletinboard 1.0 Pr2
Mybulletinboard Mybulletinboard 1.1.6
Mybulletinboard Mybulletinboard 1.1.7
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »