Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
woltlab burning board vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-8869
Multiple cross-site scripting (XSS) vulnerabilities in mobiquo/smartbanner/welcome.php in the Tapatalk (com.tapatalk.wbb4) plugin 1.x prior to 1.1.2 for Woltlab Burning Board 4.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) app_android_id or (2)...
Tapatalk Tapatalk 1.0.2
Tapatalk Tapatalk 1.0.1
Tapatalk Tapatalk 1.1.1
Tapatalk Tapatalk 1.0.0
Tapatalk Tapatalk 1.1.0
NA
CVE-2014-8870
Open redirect vulnerability in mobiquo/smartbanner/welcome.php in the Tapatalk (com.tapatalk.wbb4) plugin prior to 1.1.2 for Woltlab Burning Board 4.0 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the board_url pa...
Tapatalk Tapatalk 1.0.2
Tapatalk Tapatalk 1.0.1
Tapatalk Tapatalk 1.1.1
Tapatalk Tapatalk 1.0.0
Tapatalk Tapatalk 1.1.0
NA
CVE-2010-1338
SQL injection vulnerability in ts_other.php in the Teamsite Hack plugin 3.0 and previous versions for WoltLab Burning Board allows remote malicious users to execute arbitrary SQL commands via the userid parameter in a modboard action.
Robertotto Teamsite Hack Plugin
1 EDB exploit
NA
CVE-2010-1339
Cross-site scripting (XSS) vulnerability in ts_other.php in the Teamsite Hack plugin 3.0 and previous versions for WoltLab Burning Board allows remote malicious users to inject arbitrary web script or HTML via the userid parameter in a modboard action, which is not properly handl...
Robertotto Teamsite Hack Plugin
NA
CVE-2008-7192
Cross-site request forgery (CSRF) vulnerability in index.php in WoltLab Burning Board (wBB) 3.0.1, and possibly other 3.x versions, allows remote malicious users to hijack the authentication of users for requests that delete private messages via the pmID parameter in a delete act...
Woltlab Burning Board 3.0.1
NA
CVE-2009-2311
SQL injection vulnerability in the rGallery plugin 1.2.3 for WoltLab Burning Board (WBB3) allows remote malicious users to execute arbitrary SQL commands via the userID parameter in the RGalleryUserGallery page to index.php, a different vector than CVE-2008-4627.
Selbstzweck Rgallery Plugin 1.2.3
1 EDB exploit
NA
CVE-2008-5863
SQL injection vulnerability in locator.php in the Userlocator module 3.0 for Woltlab Burning Board (wBB) allows remote malicious users to execute arbitrary SQL commands via the y parameter in a get_user action.
V-gn Userlocator 3.0
1 EDB exploit
NA
CVE-2008-4627
SQL injection vulnerability in the rGallery plugin 1.09 for WoltLab Burning Board (WBB) allows remote malicious users to execute arbitrary SQL commands via the itemID parameter in the RGalleryImageWrapper page in index.php.
Rgallery Rgallery Plugin 1.09
1 EDB exploit
NA
CVE-2008-1717
WoltLab Community Framework (WCF) 1.0.6 in WoltLab Burning Board 3.0.5 allows remote malicious users to obtain the full path via invalid (1) page and (2) form parameters, which leaks the path from an exception handler when a valid class cannot be found.
Woltlab Burning Board 3.0.5
NA
CVE-2008-1716
Cross-site scripting (XSS) vulnerability in WoltLab Community Framework (WCF) 1.0.6 in WoltLab Burning Board 3.0.5 allows remote malicious users to inject arbitrary web script or HTML via the (1) page and (2) form parameters, which are not properly handled when they are reflected...
Woltlab Burning Board 3.0.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-0044
client side
CVE-2021-47601
deserialization
CVE-2024-34994
encryption
CVE-2021-47609
CVE-2024-37079
CVE-2024-38608
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »