Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
woltlab vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-2673
SQL injection vulnerability in modcp.php in WoltLab Burning Board 2.2.2 and 2.3.3 allows remote authenticated malicious users to execute arbitrary SQL commands via the (1) x or (2) y parameters.
Woltlab Burning Board 2.2.3
Woltlab Burning Board 2.2.2
1 EDB exploit
NA
CVE-2007-1443
Multiple cross-site scripting (XSS) vulnerabilities in register.php in Woltlab Burning Board (wBB) 2.3.6 and Burning Board Lite 1.0.2pl3e allow remote malicious users to inject arbitrary web script or HTML via the (1) r_username, (2) r_email, (3) r_password, (4) r_confirmpassword...
Woltlab Burning Board 2.3.6
Woltlab Burning Board Lite 1.0.2 Pl3e
NA
CVE-2007-6518
Multiple SQL injection vulnerabilities in search.php in WoltLab Burning Board (wBB) Lite 1.0.2 pl3e allow remote malicious users to execute arbitrary SQL commands via the (1) showposts, (2) sortby, and (3) sortorder parameters.
Woltlab Burning Board Lite 1.0.2 Pl3e
Woltlab Burning Board Lite 1.0.2
1 EDB exploit
NA
CVE-2005-1285
Cross-site scripting (XSS) vulnerability in thread.php in WoltLab Burning Board 2.3.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the hilight parameter.
Woltlab Burning Board
1 EDB exploit
NA
CVE-2005-1327
Cross-site scripting (XSS) vulnerability in pms.php for Woltlab Burning Board 2.3.1 PL2 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the folderid parameter.
Woltlab Burning Board
NA
CVE-2006-1324
Cross-site scripting (XSS) vulnerability in acp/lib/class_db_mysql.php in Woltlab Burning Board (wBB) 2.3.4 allows remote malicious users to inject arbitrary web script or HTML via the errormsg parameter when a SQL error is generated.
Woltlab Burning Board
1 EDB exploit
NA
CVE-2007-0388
SQL injection vulnerability in search.php in Woltlab Burning Board (wBB) 1.0.2 and previous versions, and 2.3.6 and previous versions in the 2.x series, allows remote malicious users to execute arbitrary SQL commands via the boardids[1] and other boardids[] parameters.
Woltlab Burning Board
3 EDB exploits
NA
CVE-2008-0857
SQL injection vulnerability in index.php in WoltLab Burning Board 3.0.3 PL 1 allows remote malicious users to execute arbitrary SQL commands via the sortOrder parameter to the PMList page.
Woltlab Burning Board 3.0.3 Pl1
1 EDB exploit
NA
CVE-2006-4317
Cross-site scripting (XSS) vulnerability in attachment.php in WoltLab Burning Board (WBB) 2.3.5 allows remote malicious users to inject arbitrary web script or HTML via a GIF image that contains URL-encoded Javascript.
Woltlab Burning Board 2.3.5
NA
CVE-2006-5508
Multiple SQL injection vulnerabilities in addentry.php in WoltLab Burning Book 1.1.2 allow remote malicious users to execute arbitrary SQL commands via (1) the n parameter and (2) the User-Agent HTTP header.
Woltlab Burning Book 1.1.2
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »