Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mybulletinboard mybulletinboard vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2005-2697
SQL injection vulnerability in search.php for MyBulletinBoard (MyBB) 1.00 Release Candidate 1 through 4 allows remote malicious users to execute arbitrary SQL commands via the uid parameter. NOTE: this issue might overlap CVE-2005-0282.
Mybulletinboard Mybulletinboard 1.00 Rc4
Mybulletinboard Mybulletinboard 1.00 Rc1
Mybulletinboard Mybulletinboard 1.00 Rc2
Mybulletinboard Mybulletinboard 1.00 Rc3
1 EDB exploit
7.5
CVSSv2
CVE-2006-0219
The original distribution of MyBulletinBoard (MyBB) to update from older versions to 1.0.2 omits or includes older versions of certain critical files, which allows malicious users to conduct (1) SQL injection attacks via an attachment name that is not properly handled by inc/func...
Mybulletinboard Mybulletinboard 1.0 Preview Release 2
Mybulletinboard Mybulletinboard 1.01
Mybulletinboard Mybulletinboard 1.0.2
Mybulletinboard Mybulletinboard 1.0 Final
7.5
CVSSv2
CVE-2005-3326
SQL injection vulnerability in usercp.php in MyBulletinBoard (MyBB) allows remote malicious users to execute arbitrary SQL commands via the awayday parameter.
Mybulletinboard Mybulletinboard 1.0 Pr2
Mybulletinboard Mybulletinboard Rc4
1 EDB exploit
7.5
CVSSv2
CVE-2006-0959
SQL injection vulnerability in misc.php in MyBulletinBoard (MyBB) 1.03, when register_globals is enabled, allows remote malicious users to execute arbitrary SQL commands by setting the comma variable value via the comma parameter in a cookie. NOTE: 1.04 has also been reported to ...
Mybulletinboard Mybulletinboard 1.0.3
Mybulletinboard Mybulletinboard 1.0.4
2 EDB exploits
4.3
CVSSv2
CVE-2005-1832
Multiple cross-site scripting (XSS) vulnerabilities in MyBulletinBoard (MyBB) 1.00 RC4 and previous versions allow remote malicious users to execute arbitrary web script or HTML via the (1) forums, (2) version, or (3) limit parameter to misc.php, (4) page or (5) datecut parameter...
Mybulletinboard Mybulletinboard
7.5
CVSSv2
CVE-2005-1833
Multiple SQL injection vulnerabilities in MyBulletinBoard (MyBB) 1.00 RC4 allow remote malicious users to execute arbitrary SQL commands via the (1) eid parameter to calendar.php, (2) idsql parameter to online.php, (3) usersearch parameter to memberlist.php, (4) pid parameter to ...
Mybulletinboard Mybulletinboard
1 EDB exploit
7.5
CVSSv2
CVE-2007-2211
SQL injection vulnerability in calendar.php in MyBB (aka MyBulletinBoard) 1.2.5 and previous versions allows remote malicious users to execute arbitrary SQL commands via the day parameter in a dayview action.
Mybulletinboard Mybulletinboard
1 EDB exploit
4.3
CVSSv2
CVE-2006-0495
Cross-site scripting (XSS) vulnerability in the Add Thread to Favorites feature in usercp2.php in MyBB (aka MyBulletinBoard) 1.02 allows remote malicious users to inject arbitrary web script or HTML via an HTTP Referer header ($url variable).
Mybulletinboard Mybulletinboard 1.0.2
6.4
CVSSv2
CVE-2006-2333
Multiple SQL injection vulnerabilities in MyBB (aka MyBulletinBoard) 1.1.1 allow remote malicious users to execute arbitrary SQL commands via the e-mail address when registering for a forum that requires e-mail verification, which is not properly handled in (1) usercp.php and (2)...
Mybulletinboard Mybulletinboard 1.1.1
6.5
CVSSv2
CVE-2006-0638
SQL injection vulnerability in moderation.php in MyBB (aka MyBulletinBoard) 1.0.3 allows remote authenticated users, with certain privileges for moderating and merging posts, to execute arbitrary SQL commands via the posts parameter.
Mybulletinboard Mybulletinboard 1.0.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »