Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
woltlab burning board vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-1443
Multiple cross-site scripting (XSS) vulnerabilities in register.php in Woltlab Burning Board (wBB) 2.3.6 and Burning Board Lite 1.0.2pl3e allow remote malicious users to inject arbitrary web script or HTML via the (1) r_username, (2) r_email, (3) r_password, (4) r_confirmpassword...
Woltlab Burning Board 2.3.6
Woltlab Burning Board Lite 1.0.2 Pl3e
NA
CVE-2007-6518
Multiple SQL injection vulnerabilities in search.php in WoltLab Burning Board (wBB) Lite 1.0.2 pl3e allow remote malicious users to execute arbitrary SQL commands via the (1) showposts, (2) sortby, and (3) sortorder parameters.
Woltlab Burning Board Lite 1.0.2 Pl3e
Woltlab Burning Board Lite 1.0.2
1 EDB exploit
NA
CVE-2007-0388
SQL injection vulnerability in search.php in Woltlab Burning Board (wBB) 1.0.2 and previous versions, and 2.3.6 and previous versions in the 2.x series, allows remote malicious users to execute arbitrary SQL commands via the boardids[1] and other boardids[] parameters.
Woltlab Burning Board
3 EDB exploits
NA
CVE-2005-1327
Cross-site scripting (XSS) vulnerability in pms.php for Woltlab Burning Board 2.3.1 PL2 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the folderid parameter.
Woltlab Burning Board
NA
CVE-2005-1285
Cross-site scripting (XSS) vulnerability in thread.php in WoltLab Burning Board 2.3.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the hilight parameter.
Woltlab Burning Board
1 EDB exploit
NA
CVE-2006-1324
Cross-site scripting (XSS) vulnerability in acp/lib/class_db_mysql.php in Woltlab Burning Board (wBB) 2.3.4 allows remote malicious users to inject arbitrary web script or HTML via the errormsg parameter when a SQL error is generated.
Woltlab Burning Board
1 EDB exploit
NA
CVE-2008-0857
SQL injection vulnerability in index.php in WoltLab Burning Board 3.0.3 PL 1 allows remote malicious users to execute arbitrary SQL commands via the sortOrder parameter to the PMList page.
Woltlab Burning Board 3.0.3 Pl1
1 EDB exploit
NA
CVE-2006-2792
SQL injection vulnerability in misc.php in Woltlab Burning Board (WBB) 2.3.4 allows remote malicious users to execute arbitrary SQL commands via the sid parameter.
Woltlab Burning Board 2.3.4
NA
CVE-2008-1717
WoltLab Community Framework (WCF) 1.0.6 in WoltLab Burning Board 3.0.5 allows remote malicious users to obtain the full path via invalid (1) page and (2) form parameters, which leaks the path from an exception handler when a valid class cannot be found.
Woltlab Burning Board 3.0.5
NA
CVE-2006-4317
Cross-site scripting (XSS) vulnerability in attachment.php in WoltLab Burning Board (WBB) 2.3.5 allows remote malicious users to inject arbitrary web script or HTML via a GIF image that contains URL-encoded Javascript.
Woltlab Burning Board 2.3.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »