Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bbs vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2009-4871
SQL injection vulnerability in globepersonnel_forum.asp in Logoshows BBS 2.0 allows remote malicious users to execute arbitrary SQL commands via the forumid parameter.
Logoshows Logoshows Bbs 2.0
1 EDB exploit
7.5
CVSSv2
CVE-2009-4872
Multiple SQL injection vulnerabilities in globepersonnel_login.asp in Logoshows BBS 2.0 allow remote malicious users to execute arbitrary SQL commands via the (1) username and (2) password fields.
Logoshows Logoshows Bbs 2.0
1 EDB exploit
5
CVSSv2
CVE-2009-4545
Logoshows BBS 2.0 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for database/globepersonnel.mdb.
Logoshows Logoshows Bbs 2.0
1 EDB exploit
7.5
CVSSv2
CVE-2009-4546
globepersonnel_login.asp in Logoshows BBS 2.0 allows remote malicious users to bypass authentication and gain administrative access by setting the (1) pb_username (aka pb%5Fusername) and (2) level cookies.
Logoshows Logoshows Bbs 2.0
1 EDB exploit
4.3
CVSSv2
CVE-2009-3283
Cross-site scripting (XSS) vulnerability in phpspot PHP BBS, PHP Image Capture BBS, PHP & CSS BBS, PHP BBS CE, PHP_RSS_Builder, and webshot, dated prior to 20090914, allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors related to cookie...
Phpspot Php Bbs
Phpspot Webshot
Phpspot Php Image Capture Bbs
Phpspot Php Bbs Ce
Phpspot Php \\& Css Bbs
Phpspot Php Rss Builder
5
CVSSv2
CVE-2009-3284
Directory traversal vulnerability in phpspot PHP BBS, PHP Image Capture BBS, PHP & CSS BBS, PHP BBS CE, PHP_RSS_Builder, and webshot, dated prior to 20090914, allows remote malicious users to read arbitrary files via unspecified vectors.
Phpspot Php Bbs
Phpspot Php Image Capture Bbs
Phpspot Php Bbs Ce
Phpspot Webshot
Phpspot Php \\& Css Bbs
Phpspot Php Rss Builder
4.3
CVSSv2
CVE-2009-3152
Multiple cross-site scripting (XSS) vulnerabilities in becommunity/community/index.php in NTSOFT BBS E-Market Professional allow remote malicious users to inject arbitrary web script or HTML via the (1) page, (2) bt_code, and (3) b_no parameters in a board view action.
Nt Bbs E-market
1 EDB exploit
4.3
CVSSv2
CVE-2009-2226
Cross-site scripting (XSS) vulnerability in Let's PHP! Tree BBS 2004/11/23 and previous versions allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Php.s3 Tree Bbs
4.3
CVSSv2
CVE-2009-1881
Cross-site scripting (XSS) vulnerability in MT312 IMG-BBS allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors related to model.php with a timestamp prior to 20090521.
Mt312 Img-bbs
4.3
CVSSv2
CVE-2009-1880
Cross-site scripting (XSS) vulnerability in MT312 REP-BBS allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors related to (1) model.php and (2) config.php with timestamps prior to 20090521.
Mt312 Rep-bbs
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »