Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
punbb punbb 1.1 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2008-3968
Cross-site scripting (XSS) vulnerability in userlist.php in PunBB prior to 1.2.20 allows remote malicious users to inject arbitrary web script or HTML via the p parameter.
Punbb Punbb 1.0
Punbb Punbb 1.1
Punbb Punbb 1.2.13
Punbb Punbb 1.2.15
Punbb Punbb 1.2.1
Punbb Punbb 1.2.11
Punbb Punbb 1.1.1
Punbb Punbb 1.1.2
Punbb Punbb 1.2.16
Punbb Punbb
Punbb Punbb 1.1.3
Punbb Punbb 1.1.4
Punbb Punbb 1.1.5
4.3
CVSSv2
CVE-2005-1072
Cross-site scripting (XSS) vulnerability in PunBB prior to 1.2.5 allows remote malicious users to inject arbitrary web script or HTML.
Punbb Punbb 1.0 Beta3
Punbb Punbb 1.0 Rc1
Punbb Punbb 1.0 Rc2
Punbb Punbb 1.1
Punbb Punbb 1.0
Punbb Punbb 1.2.1
Punbb Punbb 1.2.2
Punbb Punbb 1.2.3
Punbb Punbb 1.2.4
Punbb Punbb 1.0.1
Punbb Punbb 1.0 Beta1
Punbb Punbb 1.1.2
Punbb Punbb 1.1.4
Punbb Punbb 1.0 Alpha
Punbb Punbb 1.0 Beta2
Punbb Punbb 1.1.1
Punbb Punbb 1.1.3
Punbb Punbb 1.1.5
7.5
CVSSv2
CVE-2005-2193
SQL injection vulnerability in the user profile edit module in profile.php for PunBB 1.2.5 and previous versions allows remote malicious users to execute arbitrary SQL statements via the temp array, which is not initialized before it is used and prevents the attacker-supplied por...
Punbb Punbb 1.0 Beta3
Punbb Punbb 1.0 Rc1
Punbb Punbb 1.1.5
Punbb Punbb 1.2.1
Punbb Punbb 1.0.1
Punbb Punbb 1.0 Alpha
Punbb Punbb 1.1.1
Punbb Punbb 1.1.2
Punbb Punbb 1.2.4
Punbb Punbb 1.0 Beta1
Punbb Punbb 1.0 Beta2
Punbb Punbb 1.1.3
Punbb Punbb 1.1.4
Punbb Punbb 1.0
Punbb Punbb 1.0 Rc2
Punbb Punbb 1.1
Punbb Punbb 1.2.2
Punbb Punbb 1.2.3
6.5
CVSSv2
CVE-2005-1051
SQL injection vulnerability in profile.php in PunBB 1.2.4 allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a change_email action.
Punbb Punbb 1.0 Alpha
Punbb Punbb 1.0 Beta1
Punbb Punbb 1.1.2
Punbb Punbb 1.1.3
Punbb Punbb 1.1.4
Punbb Punbb 1.0 Rc1
Punbb Punbb 1.0 Rc2
Punbb Punbb 1.2.2
Punbb Punbb 1.2.3
Punbb Punbb 1.0
Punbb Punbb 1.0.1
Punbb Punbb 1.1
Punbb Punbb 1.1.1
Punbb Punbb 1.2.4
Punbb Punbb 1.0 Beta2
Punbb Punbb 1.0 Beta3
Punbb Punbb 1.1.5
Punbb Punbb 1.2.1
1 EDB exploit
4.3
CVSSv2
CVE-2005-4665
Cross-site scripting (XSS) vulnerability in PunBB 1.2.6 and previous versions allows remote malicious users to inject arbitrary web script or HTML via Javascript contained in nested, malformed BBcode url tags.
Punbb Punbb 1.0
Punbb Punbb 1.1
Punbb Punbb 1.1.1
Punbb Punbb 1.2.3
Punbb Punbb 1.2.4
Punbb Punbb 1.0 Beta2
Punbb Punbb 1.0 Beta3
Punbb Punbb 1.1.4
Punbb Punbb 1.1.5
Punbb Punbb 1.0 Rc1
Punbb Punbb 1.0 Rc2
Punbb Punbb 1.2.1
Punbb Punbb 1.2.2
Punbb Punbb 1.0.1
Punbb Punbb 1.0 Alpha
Punbb Punbb 1.0 Beta1
Punbb Punbb 1.1.2
Punbb Punbb 1.1.3
Punbb Punbb 1.2.5
Punbb Punbb 1.2.6
6.8
CVSSv2
CVE-2008-7241
Cross-site request forgery (CSRF) vulnerability in PunBB prior to 1.2.17 allows remote malicious users to hijack the authentication of unspecified users for requests related to a logout, probably a forced logout.
Punbb Punbb 1.2
Punbb Punbb 1.2.15
Punbb Punbb 1.2.13
Punbb Punbb 1.2.12
Punbb Punbb 1.1.3
Punbb Punbb 1.1.2
Punbb Punbb 1.1.1
Punbb Punbb 1.1
Punbb Punbb 1.2.5
Punbb Punbb 1.2.4
Punbb Punbb 1.2.3
Punbb Punbb 1.2.2
Punbb Punbb 1.1.5
Punbb Punbb 1.2.14
Punbb Punbb 1.2.10
Punbb Punbb 1.2.7
Punbb Punbb 1.2.9
Punbb Punbb 1.1.4
Punbb Punbb 1.2.1
Punbb Punbb 1.2.11
Punbb Punbb 1.0
Punbb Punbb 1.2.6
4.3
CVSSv2
CVE-2005-3078
Cross-site scripting (XSS) vulnerability in PunBB prior to 1.2.8 allows remote malicious users to inject arbitrary web script or HTML via the "forgotten e-mail" feature.
Punbb Punbb 1.1.2
Punbb Punbb 1.1.3
Punbb Punbb 1.1.4
Punbb Punbb 1.1.5
Punbb Punbb 1.0.1
Punbb Punbb 1.0 Beta3
Punbb Punbb 1.0 Rc2
Punbb Punbb 1.1.1
Punbb Punbb 1.2
Punbb Punbb 1.2.2
Punbb Punbb 1.0 Alpha
Punbb Punbb 1.0 Beta1
Punbb Punbb 1.0 Beta1a
Punbb Punbb 1.0 Beta2
Punbb Punbb 1.2.4
Punbb Punbb 1.2.5
Punbb Punbb 1.2.6
Punbb Punbb 1.2.7
Punbb Punbb 1.0
Punbb Punbb 1.0 Rc1
Punbb Punbb 1.1
Punbb Punbb 1.2.1
4.6
CVSSv2
CVE-2005-3079
PunBB prior to 1.2.8 allows remote malicious users to perform "code inclusion" via the user language selection.
Punbb Punbb 1.0 Beta1
Punbb Punbb 1.0 Beta1a
Punbb Punbb 1.0 Beta2
Punbb Punbb 1.0 Beta3
Punbb Punbb 1.2.5
Punbb Punbb 1.2.6
Punbb Punbb 1.2.7
Punbb Punbb 1.0
Punbb Punbb 1.0 Alpha
Punbb Punbb 1.0 Rc1
Punbb Punbb 1.1
Punbb Punbb 1.1.2
Punbb Punbb 1.2.1
Punbb Punbb 1.2.3
Punbb Punbb 1.1.3
Punbb Punbb 1.1.4
Punbb Punbb 1.1.5
Punbb Punbb 1.2
Punbb Punbb 1.0.1
Punbb Punbb 1.0 Rc2
Punbb Punbb 1.1.1
Punbb Punbb 1.2.2
5
CVSSv2
CVE-2006-0866
PunBB 1.2.10 and previous versions allows remote malicious users to conduct brute force guessing attacks for an account's password, which may be as short as 4 characters.
Punbb Punbb 1.0
Punbb Punbb 1.0 Beta2
Punbb Punbb 1.0 Beta3
Punbb Punbb 1.1.5
Punbb Punbb 1.2
Punbb Punbb 1.2.6
Punbb Punbb 1.2.7
Punbb Punbb 1.0 Rc1
Punbb Punbb 1.0 Rc2
Punbb Punbb 1.1
Punbb Punbb 1.2.1
Punbb Punbb 1.2.10
Punbb Punbb 1.2.8
Punbb Punbb 1.2.9
Punbb Punbb 1.0 Beta1
Punbb Punbb 1.0 Beta1a
Punbb Punbb 1.1.3
Punbb Punbb 1.1.4
Punbb Punbb 1.2.4
Punbb Punbb 1.2.5
Punbb Punbb 1.0.1
Punbb Punbb 1.0 Alpha
4.3
CVSSv2
CVE-2006-1089
Cross-site scripting (XSS) vulnerability in header.php in PunBB 1.2.10 allows remote malicious users to inject arbitrary web script or HTML via the URL, which is not properly handled when the PHP_SELF variable is used to handle a pun_page tag.
Punbb Punbb 1.0.1
Punbb Punbb 1.0 Alpha
Punbb Punbb 1.1
Punbb Punbb 1.1.1
Punbb Punbb 1.2.10
Punbb Punbb 1.2.2
Punbb Punbb 1.2.3
Punbb Punbb 1.0 Beta1
Punbb Punbb 1.0 Beta1a
Punbb Punbb 1.1.2
Punbb Punbb 1.1.3
Punbb Punbb 1.2.4
Punbb Punbb 1.2.5
Punbb Punbb 1.0 Beta2
Punbb Punbb 1.0 Beta3
Punbb Punbb 1.1.4
Punbb Punbb 1.1.5
Punbb Punbb 1.2.6
Punbb Punbb 1.2.7
Punbb Punbb 1.0
Punbb Punbb 1.0 Rc1
Punbb Punbb 1.0 Rc2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4644
unprivileged
CVE-2024-3494
CVE-2024-22460
CVE-2024-26026
CVE-2024-23473
firewall
CVE-2024-28889
XML external entity
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »