Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
burning board vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2007-1443
Multiple cross-site scripting (XSS) vulnerabilities in register.php in Woltlab Burning Board (wBB) 2.3.6 and Burning Board Lite 1.0.2pl3e allow remote malicious users to inject arbitrary web script or HTML via the (1) r_username, (2) r_email, (3) r_password, (4) r_confirmpassword...
Woltlab Burning Board 2.3.6
Woltlab Burning Board Lite 1.0.2 Pl3e
755
VMScore
CVE-2007-6518
Multiple SQL injection vulnerabilities in search.php in WoltLab Burning Board (wBB) Lite 1.0.2 pl3e allow remote malicious users to execute arbitrary SQL commands via the (1) showposts, (2) sortby, and (3) sortorder parameters.
Woltlab Burning Board Lite 1.0.2 Pl3e
Woltlab Burning Board Lite 1.0.2
1 EDB exploit
685
VMScore
CVE-2006-1324
Cross-site scripting (XSS) vulnerability in acp/lib/class_db_mysql.php in Woltlab Burning Board (wBB) 2.3.4 allows remote malicious users to inject arbitrary web script or HTML via the errormsg parameter when a SQL error is generated.
Woltlab Burning Board
1 EDB exploit
765
VMScore
CVE-2007-0388
SQL injection vulnerability in search.php in Woltlab Burning Board (wBB) 1.0.2 and previous versions, and 2.3.6 and previous versions in the 2.x series, allows remote malicious users to execute arbitrary SQL commands via the boardids[1] and other boardids[] parameters.
Woltlab Burning Board
3 EDB exploits
685
VMScore
CVE-2005-1285
Cross-site scripting (XSS) vulnerability in thread.php in WoltLab Burning Board 2.3.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the hilight parameter.
Woltlab Burning Board
1 EDB exploit
383
VMScore
CVE-2005-1327
Cross-site scripting (XSS) vulnerability in pms.php for Woltlab Burning Board 2.3.1 PL2 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the folderid parameter.
Woltlab Burning Board
435
VMScore
CVE-2002-2021
Cross-site scripting (XSS) vulnerability in WoltLab Burning Board (wbboard) 1.1.1 allows remote malicious users to inject arbitrary web script or HTML via the message parameter.
Woltlab Burning Board 1.1.1
1 EDB exploit
435
VMScore
CVE-2006-1215
Cross-site scripting (XSS) vulnerability in misc.php in Woltlab Burning Board (wBB) 2.3.4 allows remote malicious users to inject arbitrary web script or HTML via the percent parameter. NOTE: this issue has been disputed in a followup post, although the original disclosure might ...
Woltlab Burning Board 2.3.4
1 EDB exploit
755
VMScore
CVE-2005-1642
SQL injection vulnerability in the verify_email function in Woltlab Burning Board 2.x and previous versions allows remote malicious users to execute arbitrary SQL commands via the $email variable.
Woltlab Burning Board 2.0
1 EDB exploit
755
VMScore
CVE-2008-0857
SQL injection vulnerability in index.php in WoltLab Burning Board 3.0.3 PL 1 allows remote malicious users to execute arbitrary SQL commands via the sortOrder parameter to the PMList page.
Woltlab Burning Board 3.0.3 Pl1
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site request forgery
CVE-2024-34351
CVE-2024-1076
CVE-2024-25522
CVE-2024-34547
CVE-2024-4644
unauthorized
remote
CVE-2024-4671
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »