Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gnuboard5 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-18662
SQL Injection vulnerability in gnuboard5 <=v5.3.2.8 via the table_prefix parameter in install_db.php.
Gnuboard Gnuboard5
6.1
CVSSv3
CVE-2018-18668
GNUBOARD5 prior to 5.3.2.0 has XSS that allows remote malicious users to inject arbitrary web script or HTML via the "homepage title" parameter, aka the adm/config_form_update.php cf_title parameter.
Gnuboard Gnuboard5
6.1
CVSSv3
CVE-2018-18678
GNUBOARD5 prior to 5.3.2.0 has XSS that allows remote malicious users to inject arbitrary web script or HTML via the "board group extra contents" parameter, aka the adm/boardgroup_form_update.php gr_1~10 parameter.
Gnuboard Gnuboard5
6.1
CVSSv3
CVE-2020-18661
Cross Site Scripting (XSS) vulnerability in gnuboard5 <=v5.3.2.8 via the url parameter to bbs/login.php.
Gnuboard Gnuboard5
6.1
CVSSv3
CVE-2018-18670
GNUBOARD5 5.3.1.9 has XSS that allows remote malicious users to inject arbitrary web script or HTML via the "Extra Contents" parameter, aka the adm/config_form_update.php cf_1~10 parameter.
Gnuboard Gnuboard5 5.3.1.9
6.1
CVSSv3
CVE-2018-18669
GNUBOARD5 5.3.1.9 has XSS that allows remote malicious users to inject arbitrary web script or HTML via the "board title contents" parameter, aka the adm/board_form_update.php bo_subject parameter.
Gnuboard Gnuboard5 5.3.1.9
6.1
CVSSv3
CVE-2018-18671
GNUBOARD5 5.3.1.9 has XSS that allows remote malicious users to inject arbitrary web script or HTML via the "mobile board head contents" parameter, aka the adm/board_form_update.php bo_mobile_content_head parameter.
Gnuboard Gnuboard5 5.3.1.9
6.1
CVSSv3
CVE-2018-18672
GNUBOARD5 5.3.1.9 has XSS that allows remote malicious users to inject arbitrary web script or HTML via the "board head contents" parameter, aka the adm/board_form_update.php bo_content_head parameter.
Gnuboard Gnuboard5 5.3.1.9
6.1
CVSSv3
CVE-2018-18673
GNUBOARD5 5.3.1.9 has XSS that allows remote malicious users to inject arbitrary web script or HTML via the "Menu Link" parameter, aka the adm/menu_list_update.php me_link parameter.
Gnuboard Gnuboard5 5.3.1.9
6.1
CVSSv3
CVE-2018-18674
GNUBOARD5 5.3.1.9 has XSS that allows remote malicious users to inject arbitrary web script or HTML via the "board tail contents" parameter, aka the adm/board_form_update.php bo_content_tail parameter.
Gnuboard Gnuboard5 5.3.1.9
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »