Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pblang pblang 4.65 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-5062
PHP remote file inclusion vulnerability in templates/pb/language/lang_nl.php in PBLang (PBL) 4.66z and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the temppath parameter.
Pblang Pblang 4.66
Pblang Pblang
Pblang Pblang 4.0
Pblang Pblang 4.56 4.5 Rc2
Pblang Pblang 4.6
Pblang Pblang 4.63
Pblang Pblang 4.65
1 EDB exploit
NA
CVE-2005-0526
Multiple cross-site scripting (XSS) vulnerabilities in PBLang 4.65 allow remote malicious users to inject arbitrary web script or HTML via (1) the search string to search.php, (2) the subject of a PM, which is processed by pm.php, or (3) the body of a PM, which is processed by pm...
Pblang Pblang 4.65
NA
CVE-2005-2892
Directory traversal vulnerability in setcookie.php in PBLang 4.65, and possibly earlier versions, allows remote malicious users to read arbitrary files via ".." sequences and "%00" (trailing null byte) in the u parameter.
Pblang Pblang 4.65
2 EDB exploits
NA
CVE-2005-2893
Direct static code injection vulnerability in setcookie.php in PBLang 4.65, and possibly earlier versions, allows remote malicious users to execute arbitrary PHP code via the username (u parameter), which is directly injected into a file that is later executed upon login.
Pblang Pblang 4.65
NA
CVE-2005-2894
Cross-site scripting (XSS) vulnerability in the user registration in PBLang 4.65, and possibly earlier versions, allows remote malicious users to inject arbitrary web script or PHP via the location field.
Pblang Pblang 4.65
NA
CVE-2005-2895
setcookie.php in PBLang 4.65, and possibly earlier versions, allows remote malicious users to obtain sensitive information via a %00 (a null byte) in the u parameter, which reveals the path in an error message.
Pblang Pblang 4.65
NA
CVE-2007-1052
PHP remote file inclusion vulnerability in index.php in PBLang (PBL) 4.60 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the dbpath parameter, a different vector than CVE-2006-5062. NOTE: this issue has been disputed by a reliable t...
Pblang Pblang
NA
CVE-2005-3919
Cross-site scripting (XSS) vulnerability in PBLang 4.65 allows remote malicious users to inject arbitrary web script or HTML via multiple fields in (1) UCP.php and (2) SendPm.php.
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started