Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gnuboard5 vulnerabilities and exploits
(subscribe to this query)
9.1
CVSSv3
CVE-2022-1252
Use of a Broken or Risky Cryptographic Algorithm in GitHub repository gnuboard/gnuboard5 prior to and including 5.5.5. A vulnerability in gnuboard v5.5.5 and below uses weak encryption algorithms leading to sensitive information exposure. This allows an malicious user to derive t...
Gnuboard Gnuboard5
6.1
CVSSv3
CVE-2018-15582
Cross-Site Scripting (XSS) vulnerability in adm/sms_admin/num_book_write.php and adm/sms_admin/num_book_update.php in gnuboard5 prior to 5.3.1.6 allows remote malicious users to inject arbitrary web script or HTML.
Gnuboard Gnuboard5
6.1
CVSSv3
CVE-2018-15583
Cross-Site Scripting (XSS) vulnerability in point_list.php in GNUBOARD5 prior to 5.3.1.6 allows remote malicious users to inject arbitrary web script or HTML via the popup title parameter.
Gnuboard Gnuboard5
6.1
CVSSv3
CVE-2021-3831
gnuboard5 is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Gnuboard Gnuboard5
6.1
CVSSv3
CVE-2018-18669
GNUBOARD5 5.3.1.9 has XSS that allows remote malicious users to inject arbitrary web script or HTML via the "board title contents" parameter, aka the adm/board_form_update.php bo_subject parameter.
Gnuboard Gnuboard5 5.3.1.9
6.1
CVSSv3
CVE-2018-18670
GNUBOARD5 5.3.1.9 has XSS that allows remote malicious users to inject arbitrary web script or HTML via the "Extra Contents" parameter, aka the adm/config_form_update.php cf_1~10 parameter.
Gnuboard Gnuboard5 5.3.1.9
6.1
CVSSv3
CVE-2018-18672
GNUBOARD5 5.3.1.9 has XSS that allows remote malicious users to inject arbitrary web script or HTML via the "board head contents" parameter, aka the adm/board_form_update.php bo_content_head parameter.
Gnuboard Gnuboard5 5.3.1.9
6.1
CVSSv3
CVE-2018-18674
GNUBOARD5 5.3.1.9 has XSS that allows remote malicious users to inject arbitrary web script or HTML via the "board tail contents" parameter, aka the adm/board_form_update.php bo_content_tail parameter.
Gnuboard Gnuboard5 5.3.1.9
6.1
CVSSv3
CVE-2018-18675
GNUBOARD5 5.3.1.9 has XSS that allows remote malicious users to inject arbitrary web script or HTML via the "mobile board title contents" parameter, aka the adm/board_form_update.php bo_mobile_subject parameter.
Gnuboard Gnuboard5 5.3.1.9
6.1
CVSSv3
CVE-2018-18671
GNUBOARD5 5.3.1.9 has XSS that allows remote malicious users to inject arbitrary web script or HTML via the "mobile board head contents" parameter, aka the adm/board_form_update.php bo_mobile_content_head parameter.
Gnuboard Gnuboard5 5.3.1.9
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »