Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mybulletinboard mybulletinboard vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2005-3777
MyBulletinBoard (MyBB) 1.0 PR2 Rev 686 allows remote malicious users to delete or move private messages (PM) via modified fields in the inbox form.
Mybulletinboard Mybulletinboard Preview Release 2 Rev 686
5.1
CVSSv2
CVE-2006-1716
Cross-site scripting (XSS) vulnerability in inc/functions_post.php in MyBB (aka MyBulletinBoard) 1.10 allows remote malicious users to inject arbitrary web script or HTML via a JavaScript event in a BBCode img tag. NOTE: the email vector is already covered by CVE-2006-1625, altho...
Mybulletinboard Mybulletinboard 1.10
4.3
CVSSv2
CVE-2006-0495
Cross-site scripting (XSS) vulnerability in the Add Thread to Favorites feature in usercp2.php in MyBB (aka MyBulletinBoard) 1.02 allows remote malicious users to inject arbitrary web script or HTML via an HTTP Referer header ($url variable).
Mybulletinboard Mybulletinboard 1.0.2
6.5
CVSSv2
CVE-2006-0638
SQL injection vulnerability in moderation.php in MyBB (aka MyBulletinBoard) 1.0.3 allows remote authenticated users, with certain privileges for moderating and merging posts, to execute arbitrary SQL commands via the posts parameter.
Mybulletinboard Mybulletinboard 1.0.3
5.1
CVSSv2
CVE-2006-4449
Cross-site scripting (XSS) vulnerability in attachment.php in MyBulletinBoard (MyBB) 1.1.7 and possibly other versions allows remote malicious users to inject arbitrary web script or HTML via a GIF image that contains URL-encoded Javascript, which is rendered by Internet Explorer...
Mybulletinboard Mybulletinboard 1.1.7
1 EDB exploit
5
CVSSv2
CVE-2006-0406
search.php in MyBB 1.0.2 allows remote malicious users to obtain sensitive information via a certain search request that reveals the table prefix in a SQL error message, possibly due to invalid parameters.
Mybulletinboard Mybulletinboard 1.0.2
4.3
CVSSv2
CVE-2006-0494
Directory traversal vulnerability in MyBB (aka MyBulletinBoard) 1.02 allows local users with MyBB administrative privileges to include and possibly execute arbitrary local files via directory traversal sequences and a nul (%00) character in the plugin parameter.
Mybulletinboard Mybulletinboard 1.0.2
7.5
CVSSv2
CVE-2005-2580
Multiple SQL injection vulnerabilities in MyBulletinBoard (MyBB) 1.00 RC4 with Security Patch allow remote malicious users to execute arbitrary SQL commands via the Username field in (1) index.php or (2) member.php, action parameter to (3) search.php or (4) member.php, or (5) pol...
Mybulletinboard Mybulletinboard 1.00 Rc4 Security Patch
4 EDB exploits
4.3
CVSSv2
CVE-2006-1911
Cross-site scripting (XSS) vulnerability in MyBB (MyBulletinBoard) 1.1 allows remote malicious users to inject arbitrary web script or HTML via the attachment content disposition in an HTML attachment.
Mybulletinboard Mybulletinboard 1.1
2.1
CVSSv2
CVE-2006-2103
SQL injection vulnerability in MyBB (MyBulletinBoard) 1.1.1 allows remote authenticated administrators to execute arbitrary SQL commands via the (1) query string ($querystring variable) in (a) admin/adminlogs.php, which is not properly handled by adminfunctions.php; or (2) setid,...
Mybulletinboard Mybulletinboard 1.1.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »