Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bbs vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-1881
Cross-site scripting (XSS) vulnerability in MT312 IMG-BBS allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors related to model.php with a timestamp prior to 20090521.
Mt312 Img-bbs
NA
CVE-2009-2226
Cross-site scripting (XSS) vulnerability in Let's PHP! Tree BBS 2004/11/23 and previous versions allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Php.s3 Tree Bbs
NA
CVE-2015-0868
Unrestricted file upload vulnerability in Mrs. Shiromuku Perl CGI shiromuku(bu2)BBS prior to 2.91 allows remote malicious users to execute arbitrary code by uploading an executable file.
Shiromuku Bu2 Bbs
NA
CVE-2012-4019
Cross-site scripting (XSS) vulnerability in tokyo_bbs.cgi in Come on Girls Interface (CGI) Tokyo BBS allows remote malicious users to inject arbitrary web script or HTML via vectors related to the error page.
C61 Tokyo Bbs -
6.1
CVSSv3
CVE-2023-34174
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in BBS e-Theme BBS e-Popup plugin <= 2.4.5 versions.
Bbsetheme Bbs E-popup
NA
CVE-2001-0123
Directory traversal vulnerability in eXtropia bbs_forum.cgi 1.0 allows remote malicious users to read arbitrary files via a .. (dot dot) attack on the file parameter.
Extropia Bbs Forum.cgi 1.0
1 EDB exploit
NA
CVE-2009-4546
globepersonnel_login.asp in Logoshows BBS 2.0 allows remote malicious users to bypass authentication and gain administrative access by setting the (1) pb_username (aka pb%5Fusername) and (2) level cookies.
Logoshows Logoshows Bbs 2.0
1 EDB exploit
NA
CVE-2009-4871
SQL injection vulnerability in globepersonnel_forum.asp in Logoshows BBS 2.0 allows remote malicious users to execute arbitrary SQL commands via the forumid parameter.
Logoshows Logoshows Bbs 2.0
1 EDB exploit
NA
CVE-2009-3152
Multiple cross-site scripting (XSS) vulnerabilities in becommunity/community/index.php in NTSOFT BBS E-Market Professional allow remote malicious users to inject arbitrary web script or HTML via the (1) page, (2) bt_code, and (3) b_no parameters in a board view action.
Nt Bbs E-market
1 EDB exploit
8.8
CVSSv3
CVE-2023-27755
go-bbs v1 exists to contain an arbitrary file download vulnerability via the component /api/v1/download.
71note Go-bbs 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »