xmb forum xmb 1.9 beta vulnerabilities and exploits

(subscribe to this query)

7.5

CVSSv2

Multiple SQL injection vulnerabilities in XMB 1.8 Final SP2 allow remote malicious users to inject arbitrary SQL and gain privileges via the (1) ppp parameter in viewthread.php, (2) desc parameter in misc.php, (3) tpp parameter in forumdisplay.php, (4) ascdesc parameter in forumd...

Xmb Forum Xmb 1.8 Sp1 Xmb Forum Xmb 1.8 Sp2 Xmb Forum Xmb 1.8

1 EDB exploit

7.5

CVSSv2

SQL injection vulnerability in Extreme Messageboard (XMB) 1.9 beta allows remote malicious users to execute arbitrary SQL commands via the restrict parameter to (1) member.php, (2) misc.php, or (3) today.php.

Xmb Forum Xmb 1.8 Sp3 Xmb Forum Xmb 1.9 Beta

4.3

CVSSv2

Multiple cross-site scripting (XSS) vulnerabilities in XMB (aka extreme message board) 1.9 beta (aka Nexus beta) allow remote malicious users to inject arbitrary web script or HTML via (1) the u2uheader parameter in editprofile.php, the restrict parameter in (2) member.php, (3) m...

Xmb Forum Xmb 1.8 Sp3 Xmb Forum Xmb 1.9 Beta

4.3

CVSSv2

Multiple cross-site scripting (XSS) vulnerabilities in Extreme Messageboard (XMB) 1.8 SP3 and 1.9 beta allow remote malicious users to inject arbitrary web script or HTML via the (1) xmbuser parameter to xmb.php, (2) folder parameter to u2u.php, (3) viewmost, replymost, or latest...

Xmb Forum Xmb 1.8 Sp3 Xmb Forum Xmb 1.9 Beta

5

CVSSv2

Intentional information leak in phpinfo.php in XMB (aka extreme message board) 1.9 beta (aka Nexus beta) allows remote malicious users to obtain sensitive information such as the configuration of the web server and the PHP application.

Xmb Software Xmb Forum 1.9 Nexus Beta

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook