Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bbs vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-4871
SQL injection vulnerability in globepersonnel_forum.asp in Logoshows BBS 2.0 allows remote malicious users to execute arbitrary SQL commands via the forumid parameter.
Logoshows Logoshows Bbs 2.0
1 EDB exploit
NA
CVE-2009-4872
Multiple SQL injection vulnerabilities in globepersonnel_login.asp in Logoshows BBS 2.0 allow remote malicious users to execute arbitrary SQL commands via the (1) username and (2) password fields.
Logoshows Logoshows Bbs 2.0
1 EDB exploit
NA
CVE-2009-4545
Logoshows BBS 2.0 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for database/globepersonnel.mdb.
Logoshows Logoshows Bbs 2.0
1 EDB exploit
NA
CVE-2009-4546
globepersonnel_login.asp in Logoshows BBS 2.0 allows remote malicious users to bypass authentication and gain administrative access by setting the (1) pb_username (aka pb%5Fusername) and (2) level cookies.
Logoshows Logoshows Bbs 2.0
1 EDB exploit
NA
CVE-2009-3284
Directory traversal vulnerability in phpspot PHP BBS, PHP Image Capture BBS, PHP & CSS BBS, PHP BBS CE, PHP_RSS_Builder, and webshot, dated prior to 20090914, allows remote malicious users to read arbitrary files via unspecified vectors.
Phpspot Php Bbs
Phpspot Php Image Capture Bbs
Phpspot Php Bbs Ce
Phpspot Webshot
Phpspot Php \\& Css Bbs
Phpspot Php Rss Builder
NA
CVE-2009-3283
Cross-site scripting (XSS) vulnerability in phpspot PHP BBS, PHP Image Capture BBS, PHP & CSS BBS, PHP BBS CE, PHP_RSS_Builder, and webshot, dated prior to 20090914, allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors related to cookie...
Phpspot Php Bbs
Phpspot Webshot
Phpspot Php Image Capture Bbs
Phpspot Php Bbs Ce
Phpspot Php \\& Css Bbs
Phpspot Php Rss Builder
NA
CVE-2009-3152
Multiple cross-site scripting (XSS) vulnerabilities in becommunity/community/index.php in NTSOFT BBS E-Market Professional allow remote malicious users to inject arbitrary web script or HTML via the (1) page, (2) bt_code, and (3) b_no parameters in a board view action.
Nt Bbs E-market
1 EDB exploit
NA
CVE-2009-2226
Cross-site scripting (XSS) vulnerability in Let's PHP! Tree BBS 2004/11/23 and previous versions allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Php.s3 Tree Bbs
NA
CVE-2009-1880
Cross-site scripting (XSS) vulnerability in MT312 REP-BBS allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors related to (1) model.php and (2) config.php with timestamps prior to 20090521.
Mt312 Rep-bbs
NA
CVE-2009-1881
Cross-site scripting (XSS) vulnerability in MT312 IMG-BBS allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors related to model.php with a timestamp prior to 20090521.
Mt312 Img-bbs
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »