Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
burning board vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2005-0216
Cross-site scripting (XSS) vulnerability in formmail.php in Woltlab Burning Board Lite 1.0.0, 1.0.1e, and possibly other versions, allows remote malicious users to inject arbitrary web script and HTML via the userid parameter.
4.3
CVSSv2
CVE-2005-1327
Cross-site scripting (XSS) vulnerability in pms.php for Woltlab Burning Board 2.3.1 PL2 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the folderid parameter.
Woltlab Burning Board
7.5
CVSSv2
CVE-2005-0661
SQL injection vulnerability in the getwbbuserdata function in session.php for Woltlab Burning Board 2.0.3 up to and including 2.3.0 allows remote malicious users to execute arbitrary SQL commands via the (1) userid or (2) lastvisit cookie.
Woltlab Burning Board 2.2.1
Woltlab Burning Board 2.1.5
Woltlab Burning Board 2.3.0
Woltlab Burning Board 2.0.3
6.8
CVSSv2
CVE-2005-1285
Cross-site scripting (XSS) vulnerability in thread.php in WoltLab Burning Board 2.3.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the hilight parameter.
Woltlab Burning Board
1 EDB exploit
7.5
CVSSv2
CVE-2002-1505
SQL injection vulnerability in board.php for WoltLab Burning Board (wBB) 2.0 RC 1 and previous versions allows remote malicious users to modify the database and possibly gain privileges via the boardid parameter.
Woltlab Burning Board 2.0 Beta 4
Woltlab Burning Board
Woltlab Burning Board 2.0 Beta 3
Woltlab Burning Board 2.0 Beta 5
1 EDB exploit
4.3
CVSSv2
CVE-2002-2021
Cross-site scripting (XSS) vulnerability in WoltLab Burning Board (wbboard) 1.1.1 allows remote malicious users to inject arbitrary web script or HTML via the message parameter.
Woltlab Burning Board 1.1.1
1 EDB exploit
7.5
CVSSv2
CVE-2002-0903
register.php for WoltLab Burning Board (wbboard) 1.1.1 uses a small number of random values for the "code" parameter that is provided to action.php to approve a new registration, along with predictable new user ID's, which allows remote malicious users to hijack ne...
Woltlab Burning Board 1.1.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-6267
XML injection
CVE-2024-37673
CVE-2024-6266
CVE-2024-30078
arbitrary
CVE-2024-36886
CVE-2024-5346
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5