Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ubbcentral ubb.threads 6.5.1.1 vulnerabilities and exploits
(subscribe to this query)
515
VMScore
CVE-2006-2568
PHP remote file inclusion vulnerability in addpost_newpoll.php in UBB.threads 6.4 up to and including 6.5.2 and 6.5.1.1 (trial) allows remote malicious users to execute arbitrary PHP code via a URL in the thispath parameter.
Ubbcentral Ubb.threads 6.4
Ubbcentral Ubb.threads 6.5.2
Ubbcentral Ubb.threads 6.5.1
Ubbcentral Ubb.threads 6.5.1.1
Ubbcentral Ubb.threads 6.4.3
Ubbcentral Ubb.threads 6.4.4
Ubbcentral Ubb.threads 6.5
Ubbcentral Ubb.threads 6.4.1
Ubbcentral Ubb.threads 6.4.2
1 EDB exploit
515
VMScore
CVE-2006-5137
Multiple direct static code injection vulnerabilities in Groupee UBB.threads 6.5.1.1 allow remote malicious users to (1) inject PHP code via a theme[] array parameter to admin/doedittheme.php, which is injected into includes/theme.inc.php; (2) inject PHP code via a config[] array...
Ubbcentral Ubb.threads 6.5.1.1
1 EDB exploit
668
VMScore
CVE-2006-5136
Multiple PHP remote file inclusion vulnerabilities in ubbt.inc.php in Groupee UBB.threads 6.5.1.1 allow remote malicious users to execute arbitrary PHP code via a URL in the (1) GLOBALS[thispath] or (2) GLOBALS[configdir] parameter.
Ubbcentral Ubb.threads 6.5.1.1
445
VMScore
CVE-2006-5138
Groupee UBB.threads 6.5.1.1 allows remote malicious users to obtain sensitive information via a direct request for cron/php/subscriptions.php, which reveals the path in an error message.
Ubbcentral Ubb.threads 6.5.1.1
605
VMScore
CVE-2005-2057
Multiple cross-site scripting (XSS) vulnerabilities in Infopop UBB.Threads prior to 6.5.2 Beta allow remote malicious users to inject arbitrary web script or HTML via the (1) Searchpage parameter to dosearch.php, (2) Number, (3) what, or (4) page parameter to newreply.php, (5) Nu...
Ubbcentral Ubb.threads 6.0
Ubbcentral Ubb.threads 6.2.1
Ubbcentral Ubb.threads 6.2.2
Ubbcentral Ubb.threads 6.1.1
Ubbcentral Ubb.threads 6.2
Ubbcentral Ubb.threads 6.4.2
Ubbcentral Ubb.threads 6.4.3
Ubbcentral Ubb.threads 6.0.1
Ubbcentral Ubb.threads 6.0.2
Ubbcentral Ubb.threads 6.3
Ubbcentral Ubb.threads 6.3.1
Ubbcentral Ubb.threads 6.5.1
Ubbcentral Ubb.threads 6.5.1.1
Ubbcentral Ubb.threads 6.0.3
Ubbcentral Ubb.threads 6.1
Ubbcentral Ubb.threads 6.4
Ubbcentral Ubb.threads 6.4.1
Ubbcentral Ubb.threads 6.2.3
Ubbcentral Ubb.threads 6.4.4
Ubbcentral Ubb.threads 6.5
790
VMScore
CVE-2005-2058
Multiple SQL injection vulnerabilities in Infopop UBB.Threads prior to 6.5.2 Beta allow remote malicious users to execute arbitrary SQL commands via the Number parameter to (1) download.php, (2) modifypost.php, (3) mailthread.php, or (4) notifymod.php, (5) month or (6) year param...
Ubbcentral Ubb.threads 6.0.1
Ubbcentral Ubb.threads 6.0.2
Ubbcentral Ubb.threads 6.2.3
Ubbcentral Ubb.threads 6.3
Ubbcentral Ubb.threads 6.3.1
Ubbcentral Ubb.threads 6.5.1
Ubbcentral Ubb.threads 6.5.1.1
Ubbcentral Ubb.threads 6.1.1
Ubbcentral Ubb.threads 6.2
Ubbcentral Ubb.threads 6.4.2
Ubbcentral Ubb.threads 6.4.3
Ubbcentral Ubb.threads 6.0
Ubbcentral Ubb.threads 6.2.1
Ubbcentral Ubb.threads 6.2.2
Ubbcentral Ubb.threads 6.4.4
Ubbcentral Ubb.threads 6.5
Ubbcentral Ubb.threads 6.0.3
Ubbcentral Ubb.threads 6.1
Ubbcentral Ubb.threads 6.4
Ubbcentral Ubb.threads 6.4.1
8 EDB exploits
445
VMScore
CVE-2005-2060
Multiple HTTP Response Splitting vulnerabilities in (1) toggleshow.php, (2) togglecats.php, and (3) showprofile.php in Infopop UBB.Threads prior to 6.5.2 Beta allow remote malicious users to spoof web content and poison web caches via CRLF ("%0d%0a") sequences in the Ca...
Ubbcentral Ubb.threads 6.1.1
Ubbcentral Ubb.threads 6.2
Ubbcentral Ubb.threads 6.0
Ubbcentral Ubb.threads 6.2.1
Ubbcentral Ubb.threads 6.2.2
Ubbcentral Ubb.threads 6.4.3
Ubbcentral Ubb.threads 6.4.4
Ubbcentral Ubb.threads 6.5
Ubbcentral Ubb.threads 6.0.3
Ubbcentral Ubb.threads 6.1
Ubbcentral Ubb.threads 6.3.1
Ubbcentral Ubb.threads 6.4
Ubbcentral Ubb.threads 6.0.1
Ubbcentral Ubb.threads 6.0.2
Ubbcentral Ubb.threads 6.2.3
Ubbcentral Ubb.threads 6.3
Ubbcentral Ubb.threads 6.5.1
Ubbcentral Ubb.threads 6.5.1.1
Ubbcentral Ubb.threads 6.4.1
Ubbcentral Ubb.threads 6.4.2
445
VMScore
CVE-2005-2061
Infopop UBB.Threads prior to 6.5.2 Beta allows remote malicious users to include arbitrary files via the language parameter in a cookie followed by a null (%00) byte.
Ubbcentral Ubb.threads 6.0.3
Ubbcentral Ubb.threads 6.1
Ubbcentral Ubb.threads 6.3.1
Ubbcentral Ubb.threads 6.4
Ubbcentral Ubb.threads 6.0
Ubbcentral Ubb.threads 6.2.1
Ubbcentral Ubb.threads 6.2.2
Ubbcentral Ubb.threads 6.4.3
Ubbcentral Ubb.threads 6.4.4
Ubbcentral Ubb.threads 6.1.1
Ubbcentral Ubb.threads 6.2
Ubbcentral Ubb.threads 6.4.1
Ubbcentral Ubb.threads 6.4.2
Ubbcentral Ubb.threads 6.0.1
Ubbcentral Ubb.threads 6.0.2
Ubbcentral Ubb.threads 6.2.3
Ubbcentral Ubb.threads 6.3
Ubbcentral Ubb.threads 6.5
Ubbcentral Ubb.threads 6.5.1
Ubbcentral Ubb.threads 6.5.1.1
435
VMScore
CVE-2006-2755
Cross-site scripting (XSS) vulnerability in index.php in UBBThreads 5.x and previous versions allows remote malicious users to inject arbitrary web script or HTML via the debug parameter, as demonstrated by stealing MD5 hashes of passwords.
Ubbcentral Ubb.threads 5.0
Ubbcentral Ubb.threads 6.1.1
Ubbcentral Ubb.threads 6.2
Ubbcentral Ubb.threads 6.4.2
Ubbcentral Ubb.threads 6.4.3
Ubbcentral Ubb.threads 6.5.3
Ubbcentral Ubb.threads 5.5.1
Ubbcentral Ubb.threads 6.0
Ubbcentral Ubb.threads 6.2.1
Ubbcentral Ubb.threads 6.2.2
Ubbcentral Ubb.threads 6.4.4
Ubbcentral Ubb.threads 6.5
Ubbcentral Ubb.threads 6.0.3
Ubbcentral Ubb.threads 6.1
Ubbcentral Ubb.threads 6.4
Ubbcentral Ubb.threads 6.4.1
Ubbcentral Ubb.threads 6.5.2
Ubbcentral Ubb.threads 6.5.2 Beta2
Ubbcentral Ubb.threads 6.0.1
Ubbcentral Ubb.threads 6.0.2
Ubbcentral Ubb.threads 6.2.3
Ubbcentral Ubb.threads 6.3
1 EDB exploit
515
VMScore
CVE-2006-2675
PHP remote file inclusion vulnerability in ubbt.inc.php in UBBThreads 5.x and 6.x allows remote malicious users to execute arbitrary PHP code via a URL in the (1) thispath or (2) configdir parameters.
Ubbcentral Ubb.threads 3.4
Ubbcentral Ubb.threads 3.5
Ubbcentral Ubb.threads 6.1
Ubbcentral Ubb.threads 6.1.1
Ubbcentral Ubb.threads 5.0
Ubbcentral Ubb.threads 5.5.1
Ubbcentral Ubb.threads 6.2
Ubbcentral Ubb.threads 6.2.1
Ubbcentral Ubb.threads 6.4.2
Ubbcentral Ubb.threads 6.4.3
Ubbcentral Ubb.threads 6.4.4
Ubbcentral Ubb.threads 6.4
Ubbcentral Ubb.threads 6.4.1
Ubbcentral Ubb.threads 6.5.2 Beta2
Ubbcentral Ubb.threads
Ubbcentral Ubb.threads 6.0
Ubbcentral Ubb.threads 6.0.1
Ubbcentral Ubb.threads 6.2.2
Ubbcentral Ubb.threads 6.2.3
Ubbcentral Ubb.threads 6.5
Ubbcentral Ubb.threads 6.5.1
Ubbcentral Ubb.threads 6.0.2
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »