Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
yabb yabb 1.5.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-3275
SQL injection vulnerability in profile.php in YaBB SE 1.5.5 and previous versions allows remote malicious users to execute SQL commands via a double-encoded user parameter in a viewprofile action.
Yabb Yabb 1.5.1
Yabb Yabb
Yabb Yabb 1.5.2
Yabb Yabb 1.5.4
NA
CVE-2006-4157
Cross-site scripting (XSS) vulnerability in index.php in Yet another Bulletin Board (YaBB) allows remote malicious users to inject arbitrary web script or HTML via the categories parameter.
Yabb Yabb 1.5.5b
Yabb Yabb 1.5.4
Yabb Yabb 1.5.5
Yabb Yabb 1.5.1
Yabb Yabb 1.5.2
1 EDB exploit
NA
CVE-2004-2754
SQL injection vulnerability in SSI.php in YaBB SE 1.5.4, 1.5.3, and possibly other versions prior to 1.5.5 allows remote malicious users to execute arbitrary SQL commands via the ID_MEMBER parameter to the (1) recentTopics and (2) welcome functions.
Yabb Yabb Se 0.8
Yabb Yabb Se 1.1.3
Yabb Yabb Se 1.4.1
Yabb Yabb Se 1.5.3
Yabb Yabb Se 1.5.4
Yabb Yabb Se 1.5.1
Yabb Yabb Se 1.5.2
Yabb Yabb Se 1.5.0
Yabb Yabb Se 1.5.1 Rc1
1 EDB exploit
NA
CVE-2004-1827
Cross-site scripting (XSS) vulnerability in YaBB 1 Gold(SP1.3) and YaBB SE 1.5.1 Final allows remote malicious users to inject arbitrary web script via the background:url property in (1) glow or (2) shadow tags.
Yabb Yabb 1 Gold - Sp 1.3
Simple Machines Simple Machines Smf 1.0 B
Yabb Yabb 1.5.1
1 EDB exploit
NA
CVE-2004-1662
YaBB SE 1.5.1 allows remote malicious users to obtain sensitive information via a direct HTTP request to Admin.php, which reveals the full path in a PHP error message.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started