Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
yabb yabb 1 gold - sp 1.3.2 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-4426
Interpretation conflict in YaBB prior to 2.1 allows remote authenticated users to inject arbitrary web script or HTML via HTML in a file with a GIF file extension, which causes the HTML to be executed by a victim who views the file in Internet Explorer as a result of CVE-2005-331...
Yabb Yabb 2.0 Rc2
Yabb Yabb 2.0 Rc1
Yabb Yabb 1.40
Yabb Yabb 1 Gold - Sp 1
Yabb Yabb 1 Gold - Sp 1.3.2
Yabb Yabb 1 Gold - Sp 1.3
Yabb Yabb 1 Gold - Sp 1.4
Yabb Yabb 1 Gold - Sp 1.2
Yabb Yabb 1.41
Yabb Yabb 1 Gold Release
Yabb Yabb 2.0
Yabb Yabb 1 Gold - Sp 1.3.1
NA
CVE-2004-2403
Cross-site request forgery (CSRF) vulnerability in YaBB 1 GOLD SP 1.3.2 allows remote malicious users to perform unauthorized actions as the administrative user via a link or IMG tag to YaBB.pl that specifies the desired action, id, and moda parameters.
Yabb Yabb 2000-09-11
Yabb Yabb 1.40
Yabb Yabb 1 Gold - Sp 1
Yabb Yabb 1 Gold - Sp 1.3.2
Yabb Yabb 1 Gold - Sp 1.3
Yabb Yabb 2000-09-01
Yabb Yabb 1 Gold - Sp 1.2
Yabb Yabb 1.41
Yabb Yabb 1 Gold Release
Yabb Yabb 1 Gold - Sp 1.3.1
NA
CVE-2004-2402
Cross-site scripting (XSS) vulnerability in YaBB.pl in YaBB 1 GOLD SP 1.3.2 allows remote malicious users to inject arbitrary web script or HTML via a hex-encoded to parameter. NOTE: some sources say that the board parameter is affected, but this is incorrect.
Yabb Yabb 2000-09-11
Yabb Yabb 1.40
Yabb Yabb 1 Gold - Sp 1
Yabb Yabb 1 Gold - Sp 1.3.2
Yabb Yabb 1 Gold - Sp 1.3
Yabb Yabb 2000-09-01
Yabb Yabb 1 Gold - Sp 1.2
Yabb Yabb 1.41
Yabb Yabb 1 Gold Release
Yabb Yabb 1 Gold - Sp 1.3.1
NA
CVE-2004-2139
Unknown vulnerability in Adminedit.pl YaBB 1 Gold prior to 1.3.2 allows malicious users to execute arbitrary code via settings.pl.
Yabb Yabb 1 Gold - Sp 1.3
Yabb Yabb 1 Gold - Sp 1.3.1
NA
CVE-2004-2140
CRLF injection vulnerability in YaBB 1 Gold prior to 1.3.2 allows remote malicious users to modify text file contents via the subject variable.
Yabb Yabb 1 Gold - Sp 1.3
Yabb Yabb 1 Gold - Sp 1.3.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started