Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xmb forum xmb vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2006-0779
Cross-site scripting (XSS) vulnerability in u2u.php in XMB Forums 1.9.3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the username parameter, as demonstrated using a URL-encoded iframe tag.
Xmb Forum Xmb
4.3
CVSSv2
CVE-2005-3544
Cross-site scripting (XSS) vulnerability in u2u.php in XMB 1.9.3 allows remote malicious users to inject arbitrary web script or HTML via the username parameter.
Xmb Forum Xmb 1.9.3
2 EDB exploits
5
CVSSv2
CVE-2005-2574
xmb.php in XMB Forum 1.9.1 extracts and defines all provided variables, which allows remote malicious users to modify arbitrary server variables such as _SERVER[REMOTE_ADDR].
Xmb Forum Xmb 1.9.1
7.5
CVSSv2
CVE-2005-2575
SQL injection vulnerability in u2u.inc.php in XMB Forum 1.9.1 allows remote malicious users to execute arbitrary SQL commands via certain values that are inserted into the $in variable.
Xmb Forum Xmb 1.9.1
4.3
CVSSv2
CVE-2006-0365
Cross-site scripting (XSS) vulnerability in XMB (aka extreme message board) allows remote malicious users to inject arbitrary web script or HTML via JavaScript in the SRC attribute of an IMG element.
Xmb Software Xmb Forum
4.3
CVSSv2
CVE-2005-0885
Multiple cross-site scripting (XSS) vulnerabilities in XMB Forum 1.9.1 allow remote malicious users to inject arbitrary web script or HTML via the (1) Mood or (2) "Send To" fields.
Xmb Forum Xmb 1.9.1
7.5
CVSSv2
CVE-2006-3994
SQL injection vulnerability in the u2u_send_recp function in u2u.inc.php in XMB (aka extreme message board) 1.9.6 Alpha and previous versions allows remote malicious users to execute arbitrary SQL commands via the u2uid parameter to u2u.php, which is directly accessed from $_POST...
Xmb Software Xmb Forum
1 EDB exploit
4.3
CVSSv2
CVE-2007-6728
Cross-site scripting (XSS) vulnerability in XMB 1.5 allows remote malicious users to inject arbitrary web script or HTML via the MSN field during user registration.
Xmb Forum Xmb 1.5
6.8
CVSSv2
CVE-2003-0483
Cross-site scripting (XSS) vulnerabilities in XMB Forum 1.8 Partagium allow remote malicious users to insert arbitrary script via (1) the member parameter to member.php or (2) the action parameter to buddy.php.
Xmb Forum Xmb 1.8
1 EDB exploit
5
CVSSv2
CVE-2004-2588
Intentional information leak in phpinfo.php in XMB (aka extreme message board) 1.9 beta (aka Nexus beta) allows remote malicious users to obtain sensitive information such as the configuration of the web server and the PHP application.
Xmb Software Xmb Forum 1.9 Nexus Beta
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »