Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
burning board vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2008-1716
Cross-site scripting (XSS) vulnerability in WoltLab Community Framework (WCF) 1.0.6 in WoltLab Burning Board 3.0.5 allows remote malicious users to inject arbitrary web script or HTML via the (1) page and (2) form parameters, which are not properly handled when they are reflected...
Woltlab Burning Board 3.0.5
5
CVSSv2
CVE-2008-1717
WoltLab Community Framework (WCF) 1.0.6 in WoltLab Burning Board 3.0.5 allows remote malicious users to obtain the full path via invalid (1) page and (2) form parameters, which leaks the path from an exception handler when a valid class cannot be found.
Woltlab Burning Board 3.0.5
6.8
CVSSv2
CVE-2008-7192
Cross-site request forgery (CSRF) vulnerability in index.php in WoltLab Burning Board (wBB) 3.0.1, and possibly other 3.x versions, allows remote malicious users to hijack the authentication of users for requests that delete private messages via the pmID parameter in a delete act...
Woltlab Burning Board 3.0.1
7.5
CVSSv2
CVE-2006-6237
SQL injection vulnerability in the decode_cookie function in thread.php in Woltlab Burning Board Lite 1.0.2 allows remote malicious users to execute arbitrary SQL commands via the threadvisit Cookie parameter.
Woltlab Burning Board Lite 1.0.2
1 EDB exploit
6.8
CVSSv2
CVE-2006-6289
Woltlab Burning Board (wBB) Lite 1.0.2 does not properly unset variables when the input data includes a numeric parameter with a value matching an alphanumeric parameter's hash value, which allows remote malicious users to execute arbitrary SQL commands via the wbb_userid pa...
Woltlab Burning Board Lite 1.0.2
1 EDB exploit
6.8
CVSSv2
CVE-2008-1323
Cross-site request forgery (CSRF) vulnerability in index.php in WoltLab Burning Board Lite (wBB) 2 Beta 1 allows remote malicious users to delete threads as other users via the ThreadDelete action.
Woltlab Burning Board Lite 2.0
5.8
CVSSv2
CVE-2014-8870
Open redirect vulnerability in mobiquo/smartbanner/welcome.php in the Tapatalk (com.tapatalk.wbb4) plugin prior to 1.1.2 for Woltlab Burning Board 4.0 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the board_url pa...
Tapatalk Tapatalk 1.0.0
Tapatalk Tapatalk 1.1.1
Tapatalk Tapatalk 1.1.0
Tapatalk Tapatalk 1.0.2
Tapatalk Tapatalk 1.0.1
4.3
CVSSv2
CVE-2014-8869
Multiple cross-site scripting (XSS) vulnerabilities in mobiquo/smartbanner/welcome.php in the Tapatalk (com.tapatalk.wbb4) plugin 1.x prior to 1.1.2 for Woltlab Burning Board 4.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) app_android_id or (2)...
Tapatalk Tapatalk 1.0.1
Tapatalk Tapatalk 1.0.0
Tapatalk Tapatalk 1.1.1
Tapatalk Tapatalk 1.1.0
Tapatalk Tapatalk 1.0.2
7.5
CVSSv2
CVE-2008-1640
SQL injection vulnerability in jgs_treffen.php in the JGS-XA JGS-Treffen 2.0.2 and previous versions addon for Woltlab Burning Board (wBB) allows remote malicious users to execute arbitrary SQL commands via the view_id parameter in an ansicht action.
Jgs-xa Jgs Treffen
Jgs-xa Jgs Treffen 2.0.1
1 EDB exploit
7.5
CVSSv2
CVE-2010-1338
SQL injection vulnerability in ts_other.php in the Teamsite Hack plugin 3.0 and previous versions for WoltLab Burning Board allows remote malicious users to execute arbitrary SQL commands via the userid parameter in a modboard action.
Robertotto Teamsite Hack Plugin
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »