Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
yabb yabb 1 gold sp 1 vulnerabilities and exploits
(subscribe to this query)
356
VMScore
CVE-2005-4426
Interpretation conflict in YaBB prior to 2.1 allows remote authenticated users to inject arbitrary web script or HTML via HTML in a file with a GIF file extension, which causes the HTML to be executed by a victim who views the file in Internet Explorer as a result of CVE-2005-331...
Yabb Yabb 2.0 Rc2
Yabb Yabb 2.0 Rc1
Yabb Yabb 1.40
Yabb Yabb 1 Gold - Sp 1
Yabb Yabb 1 Gold - Sp 1.3.2
Yabb Yabb 1 Gold - Sp 1.3
Yabb Yabb 1 Gold - Sp 1.4
Yabb Yabb 1 Gold - Sp 1.2
Yabb Yabb 1.41
Yabb Yabb 1 Gold Release
Yabb Yabb 2.0
Yabb Yabb 1 Gold - Sp 1.3.1
383
VMScore
CVE-2004-2402
Cross-site scripting (XSS) vulnerability in YaBB.pl in YaBB 1 GOLD SP 1.3.2 allows remote malicious users to inject arbitrary web script or HTML via a hex-encoded to parameter. NOTE: some sources say that the board parameter is affected, but this is incorrect.
Yabb Yabb 2000-09-11
Yabb Yabb 1.40
Yabb Yabb 1 Gold - Sp 1
Yabb Yabb 1 Gold - Sp 1.3.2
Yabb Yabb 1 Gold - Sp 1.3
Yabb Yabb 2000-09-01
Yabb Yabb 1 Gold - Sp 1.2
Yabb Yabb 1.41
Yabb Yabb 1 Gold Release
Yabb Yabb 1 Gold - Sp 1.3.1
890
VMScore
CVE-2004-2403
Cross-site request forgery (CSRF) vulnerability in YaBB 1 GOLD SP 1.3.2 allows remote malicious users to perform unauthorized actions as the administrative user via a link or IMG tag to YaBB.pl that specifies the desired action, id, and moda parameters.
Yabb Yabb 2000-09-11
Yabb Yabb 1.40
Yabb Yabb 1 Gold - Sp 1
Yabb Yabb 1 Gold - Sp 1.3.2
Yabb Yabb 1 Gold - Sp 1.3
Yabb Yabb 2000-09-01
Yabb Yabb 1 Gold - Sp 1.2
Yabb Yabb 1.41
Yabb Yabb 1 Gold Release
Yabb Yabb 1 Gold - Sp 1.3.1
445
VMScore
CVE-2004-1982
Post.pl in YaBB 1 Gold SP 1.2 allows remote malicious users to modify records in the board's .txt file via carriage return characters in the subject field.
Yabb Yabb 1 Gold - Sp 1
Yabb Yabb 1 Gold - Sp 1.2
668
VMScore
CVE-2004-2139
Unknown vulnerability in Adminedit.pl YaBB 1 Gold prior to 1.3.2 allows malicious users to execute arbitrary code via settings.pl.
Yabb Yabb 1 Gold - Sp 1.3
Yabb Yabb 1 Gold - Sp 1.3.1
445
VMScore
CVE-2004-2140
CRLF injection vulnerability in YaBB 1 Gold prior to 1.3.2 allows remote malicious users to modify text file contents via the subject variable.
Yabb Yabb 1 Gold - Sp 1.3
Yabb Yabb 1 Gold - Sp 1.3.1
755
VMScore
CVE-2002-0955
Cross-site scripting vulnerability in YaBB.cgi for Yet Another Bulletin Board (YaBB) 1 Gold SP1 and previous versions allows remote malicious users to execute arbitrary script as other web site visitors via script in the num parameter, which is not filtered in the resulting error...
Yabb Yabb 1 Gold Sp 1
1 EDB exploit
435
VMScore
CVE-2002-2296
Cross-site scripting (XSS) vulnerability in YaBB.pl in Yet Another Bulletin Board (YaBB) 1 Gold SP 1 allows remote malicious users to inject arbitrary web script or HTML via the num parameter.
Yabb Yabb 1 Gold - Sp 1
1 EDB exploit
435
VMScore
CVE-2004-1827
Cross-site scripting (XSS) vulnerability in YaBB 1 Gold(SP1.3) and YaBB SE 1.5.1 Final allows remote malicious users to inject arbitrary web script via the background:url property in (1) glow or (2) shadow tags.
Yabb Yabb 1 Gold - Sp 1.3
Simple Machines Simple Machines Smf 1.0 B
Yabb Yabb 1.5.1
1 EDB exploit
755
VMScore
CVE-2002-0117
Cross-site scripting vulnerability in Yet Another Bulletin Board (YaBB) 1 Gold SP 1 and previous versions allows remote malicious users to execute arbitrary script and steal cookies via a message containing encoded Javascript in an IMG tag.
Yabb Yabb 2000-09-11
Yabb Yabb 2000-09-01
Yabb Yabb 0.01 Release
Yabb Yabb 0.01 Sp1
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started