Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mybulletinboard mybulletinboard vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2005-2697
SQL injection vulnerability in search.php for MyBulletinBoard (MyBB) 1.00 Release Candidate 1 through 4 allows remote malicious users to execute arbitrary SQL commands via the uid parameter. NOTE: this issue might overlap CVE-2005-0282.
Mybulletinboard Mybulletinboard 1.00 Rc4
Mybulletinboard Mybulletinboard 1.00 Rc1
Mybulletinboard Mybulletinboard 1.00 Rc2
Mybulletinboard Mybulletinboard 1.00 Rc3
1 EDB exploit
7.5
CVSSv2
CVE-2005-2778
SQL injection vulnerability in member.php in MyBulletinBoard (MyBB) allows remote malicious users to execute arbitrary SQL statements via the fid parameter.
Mybulletinboard Mybulletinboard Rc1
Mybulletinboard Mybulletinboard Rc2
Mybulletinboard Mybulletinboard Rc3
Mybulletinboard Mybulletinboard Rc4
7.5
CVSSv2
CVE-2006-0959
SQL injection vulnerability in misc.php in MyBulletinBoard (MyBB) 1.03, when register_globals is enabled, allows remote malicious users to execute arbitrary SQL commands by setting the comma variable value via the comma parameter in a cookie. NOTE: 1.04 has also been reported to ...
Mybulletinboard Mybulletinboard 1.0.3
Mybulletinboard Mybulletinboard 1.0.4
2 EDB exploits
7.5
CVSSv2
CVE-2005-3326
SQL injection vulnerability in usercp.php in MyBulletinBoard (MyBB) allows remote malicious users to execute arbitrary SQL commands via the awayday parameter.
Mybulletinboard Mybulletinboard 1.0 Pr2
Mybulletinboard Mybulletinboard Rc4
1 EDB exploit
7.5
CVSSv2
CVE-2005-1833
Multiple SQL injection vulnerabilities in MyBulletinBoard (MyBB) 1.00 RC4 allow remote malicious users to execute arbitrary SQL commands via the (1) eid parameter to calendar.php, (2) idsql parameter to online.php, (3) usersearch parameter to memberlist.php, (4) pid parameter to ...
Mybulletinboard Mybulletinboard
1 EDB exploit
7.5
CVSSv2
CVE-2007-2211
SQL injection vulnerability in calendar.php in MyBB (aka MyBulletinBoard) 1.2.5 and previous versions allows remote malicious users to execute arbitrary SQL commands via the day parameter in a dayview action.
Mybulletinboard Mybulletinboard
1 EDB exploit
4.3
CVSSv2
CVE-2005-1832
Multiple cross-site scripting (XSS) vulnerabilities in MyBulletinBoard (MyBB) 1.00 RC4 and previous versions allow remote malicious users to execute arbitrary web script or HTML via the (1) forums, (2) version, or (3) limit parameter to misc.php, (4) page or (5) datecut parameter...
Mybulletinboard Mybulletinboard
4.3
CVSSv2
CVE-2005-1811
Cross-site scripting (XSS) vulnerability in usercp.php for MyBulletinBoard (MyBB) allows remote malicious users to inject arbitrary web script or HTML via the website field in a user profile.
Mybulletinboard Mybulletinboard 1.0 Rc4
6.8
CVSSv2
CVE-2006-4707
Cross-site scripting (XSS) vulnerability in admin/global.php (aka the Admin CP login form) in MyBB (aka MyBulletinBoard) 1.1.7 allows remote malicious users to inject arbitrary web script or HTML via the query string ($_SERVER[PHP_SELF]).
Mybulletinboard Mybulletinboard 1.1.7
5
CVSSv2
CVE-2006-0406
search.php in MyBB 1.0.2 allows remote malicious users to obtain sensitive information via a certain search request that reveals the table prefix in a SQL error message, possibly due to invalid parameters.
Mybulletinboard Mybulletinboard 1.0.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »