Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
usebb usebb 1.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-2066
UseBB prior to 1.0.6 allows remote malicious users to obtain sensitive information via a request with unspecified GET or POST parameters to an unspecified script, which reveals the path in an error message.
Usebb Usebb 1.0.3
Usebb Usebb 1.0.5
Usebb Usebb 1.0
Usebb Usebb 1.0.1
Usebb Usebb 1.0.2
Usebb Usebb 1.0.4
NA
CVE-2007-3963
Multiple cross-site scripting (XSS) vulnerabilities in UseBB 1.0.7, and possibly other 1.0.x versions, allow remote malicious users to inject arbitrary web script or HTML via the PATH_INFO (PHP_SELF) to (1) upgrade-0-2-3.php, (2) upgrade-0-3.php, or (3) upgrade-0-4.php in install...
Usebb Usebb 1.0.1
Usebb Usebb 1.0.2
Usebb Usebb 1.0 Rc2
Usebb Usebb 1.0 Rc3
Usebb Usebb 1.0.3
Usebb Usebb 1.0.4
Usebb Usebb 1.0
Usebb Usebb 1.0.7
Usebb Usebb 1.0 Rc1
Usebb Usebb 1.0.5
Usebb Usebb 1.0.6
2 EDB exploits
NA
CVE-2010-3713
rss.php in UseBB prior to 1.0.11 does not properly handle forum configurations in which a user has the view permission but not the read permission, which allows remote malicious users to bypass intended access restrictions by reading a forum feed in combination with a topic feed.
Usebb Usebb 1.0.5
Usebb Usebb 1.0.7
Usebb Usebb 0.3
Usebb Usebb 0.3.1
Usebb Usebb 0.2.3
Usebb Usebb 0.6
Usebb Usebb 1.0
Usebb Usebb 1.0.4
Usebb Usebb 0.4
Usebb Usebb 0.2.2
Usebb Usebb 0.5.1
Usebb Usebb 0.7
Usebb Usebb
Usebb Usebb 0.1.1
Usebb Usebb 0.1
Usebb Usebb 1.0.9
Usebb Usebb 1.0.2
Usebb Usebb 1.0.1
Usebb Usebb 0.4.1
Usebb Usebb 0.5
Usebb Usebb 0.2
Usebb Usebb 1.0.3
NA
CVE-2006-2525
SQL injection vulnerability in UseBB 1.0 RC1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the member list search module.
Usebb Usebb 1.0 Rc1
NA
CVE-2006-2524
Cross-site scripting (XSS) vulnerability in UseBB 1.0 RC1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors when processing the user date format.
Usebb Usebb 1.0 Rc1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started