Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gnuboard gnuboard5 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-18662
SQL Injection vulnerability in gnuboard5 <=v5.3.2.8 via the table_prefix parameter in install_db.php.
Gnuboard Gnuboard5
6.1
CVSSv3
CVE-2020-18663
Cross Site Scripting (XSS) vulnerability in gnuboard5 <=v5.3.2.8 via the act parameter in bbs/move_update.php.
Gnuboard Gnuboard5
6.1
CVSSv3
CVE-2018-18678
GNUBOARD5 prior to 5.3.2.0 has XSS that allows remote malicious users to inject arbitrary web script or HTML via the "board group extra contents" parameter, aka the adm/boardgroup_form_update.php gr_1~10 parameter.
Gnuboard Gnuboard5
6.1
CVSSv3
CVE-2018-18670
GNUBOARD5 5.3.1.9 has XSS that allows remote malicious users to inject arbitrary web script or HTML via the "Extra Contents" parameter, aka the adm/config_form_update.php cf_1~10 parameter.
Gnuboard Gnuboard5 5.3.1.9
6.1
CVSSv3
CVE-2018-18673
GNUBOARD5 5.3.1.9 has XSS that allows remote malicious users to inject arbitrary web script or HTML via the "Menu Link" parameter, aka the adm/menu_list_update.php me_link parameter.
Gnuboard Gnuboard5 5.3.1.9
6.1
CVSSv3
CVE-2018-18672
GNUBOARD5 5.3.1.9 has XSS that allows remote malicious users to inject arbitrary web script or HTML via the "board head contents" parameter, aka the adm/board_form_update.php bo_content_head parameter.
Gnuboard Gnuboard5 5.3.1.9
6.1
CVSSv3
CVE-2018-18676
GNUBOARD5 5.3.1.9 has XSS that allows remote malicious users to inject arbitrary web script or HTML via the "mobile board tail contents" parameter, aka the adm/board_form_update.php bo_mobile_content_tail parameter.
Gnuboard Gnuboard5 5.3.1.9
6.1
CVSSv3
CVE-2018-18669
GNUBOARD5 5.3.1.9 has XSS that allows remote malicious users to inject arbitrary web script or HTML via the "board title contents" parameter, aka the adm/board_form_update.php bo_subject parameter.
Gnuboard Gnuboard5 5.3.1.9
6.1
CVSSv3
CVE-2018-18671
GNUBOARD5 5.3.1.9 has XSS that allows remote malicious users to inject arbitrary web script or HTML via the "mobile board head contents" parameter, aka the adm/board_form_update.php bo_mobile_content_head parameter.
Gnuboard Gnuboard5 5.3.1.9
6.1
CVSSv3
CVE-2018-18675
GNUBOARD5 5.3.1.9 has XSS that allows remote malicious users to inject arbitrary web script or HTML via the "mobile board title contents" parameter, aka the adm/board_form_update.php bo_mobile_subject parameter.
Gnuboard Gnuboard5 5.3.1.9
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-35229
privilege escalation
local users
CVE-2024-5405
CVE-2024-27842
CVE-2024-5274
CVE-2024-5378
CVE-2024-34152
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »