Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
woltlab burning board 2.3.3 vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2006-5029
SQL injection vulnerability in thread.php in WoltLab Burning Board (wBB) 2.3.x allows remote malicious users to obtain the version numbers of PHP, MySQL, and wBB via the page parameter. NOTE: this issue might be a forced SQL error. Also, the original report was disputed by a thir...
Woltlab Burning Board 2.3.0
Woltlab Burning Board 2.3.1
Woltlab Burning Board 2.3.2
Woltlab Burning Board 2.3.3
Woltlab Burning Board 2.3.4
Woltlab Burning Board 2.3.5
440
VMScore
CVE-2006-1034
Multiple cross-site scripting (XSS) vulnerabilities in Woltlab Burning Board (wBB) allow remote malicious users to inject arbitrary web script or HTML via (1) the username parameter to galerie_index.php and possibly (2) galerie_onfly.php. NOTE: the provenance of this information ...
Woltlab Burning Board 1.1.1
Woltlab Burning Board 2.0 Beta 4
Woltlab Burning Board 2.3.1
Woltlab Burning Board 2.4
Woltlab Burning Board 2.6
Woltlab Burning Board 2.0 Beta 3
Woltlab Burning Board 2.3.3
Woltlab Burning Board 2.5
Woltlab Burning Board 2.0 Beta 5
Woltlab Burning Board 2.0 Rc1
Woltlab Burning Board 2.0 Rc2
Woltlab Burning Board 2.2.2
Woltlab Burning Board 2.7
2 EDB exploits
755
VMScore
CVE-2006-2569
SQL injection vulnerability in links.php in 4R Linklist 1.0 RC2 and previous versions, a module for Woltlab Burning Board, allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
Woltlab Burning Board 2.3.1
Woltlab Burning Board 2.3.3
Woltlab Burning Board 2.0 Rc2
Woltlab Burning Board 2.2.2
Woltlab Burning Board 2.0 Beta 5
Woltlab Burning Board 2.0 Rc1
Woltlab Burning Board 2.0 Beta 3
Woltlab Burning Board 2.0 Beta 4
Woltlab Burning Board 2.3.4
4r Linklist 4r Linklist
1 EDB exploit
755
VMScore
CVE-2006-1094
SQL injection vulnerability in Datenbank MOD 2.7 and previous versions for Woltlab Burning Board allows remote malicious users to execute arbitrary SQL commands via the fileid parameter to (1) info_db.php or (2) database.php.
Woltlab Burning Board 1.1.1
Woltlab Burning Board 2.0 Beta 3
Woltlab Burning Board 2.0 Beta 4
Woltlab Burning Board 2.0 Beta 5
Woltlab Burning Board 2.0 Rc1
Woltlab Burning Board 2.2.2
Woltlab Burning Board 2.3.3
Datenbank Module Datenbank Module
Woltlab Burning Board 2.4
Woltlab Burning Board 2.5
Woltlab Burning Board 2.6
Woltlab Burning Board 2.7
Woltlab Burning Board 2.0 Rc2
Woltlab Burning Board 2.3.1
1 EDB exploit
755
VMScore
CVE-2007-1518
SQL injection vulnerability in usergroups.php in Woltlab Burning Board (wBB) 2.x allows remote malicious users to execute arbitrary SQL commands via the array index of the applicationids array.
Woltlab Burning Board 2.0
Woltlab Burning Board 2.0.3
Woltlab Burning Board 2.1.6
Woltlab Burning Board 2.2.1
Woltlab Burning Board 2.3.5
Woltlab Burning Board 2.3.6
Woltlab Burning Board 2.0 Beta 5
Woltlab Burning Board 2.0 Rc1
Woltlab Burning Board 2.3.0
Woltlab Burning Board 2.3.1
Woltlab Burning Board 2.6
Woltlab Burning Board 2.7
Woltlab Burning Board 2.0 Beta 3
Woltlab Burning Board 2.0 Beta 4
Woltlab Burning Board 2.2.2
Woltlab Burning Board 2.2.3
Woltlab Burning Board 2.4
Woltlab Burning Board 2.5
Woltlab Burning Board 2.0 Rc2
Woltlab Burning Board 2.1.5
Woltlab Burning Board 2.3.2
Woltlab Burning Board 2.3.3
1 EDB exploit
755
VMScore
CVE-2005-2673
SQL injection vulnerability in modcp.php in WoltLab Burning Board 2.2.2 and 2.3.3 allows remote authenticated malicious users to execute arbitrary SQL commands via the (1) x or (2) y parameters.
Woltlab Burning Board 2.2.3
Woltlab Burning Board 2.2.2
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
brute force
CVE-2024-24908
open redirect
CVE-2024-31497
CVE-2023-45866
CVE-2024-4135
CVE-2024-25523
cache poisoning
CVE-2024-4649
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started