Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
woltlab vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-3369
Multiple SQL injection vulnerabilities in the Info-DB module (info_db.php) in Woltlab Burning Board 2.7 and previous versions allow remote malicious users to execute arbitrary SQL commands and possibly upload files via the (1) fileid and (2) subkatid parameters.
1 EDB exploit
NA
CVE-2005-2673
SQL injection vulnerability in modcp.php in WoltLab Burning Board 2.2.2 and 2.3.3 allows remote authenticated malicious users to execute arbitrary SQL commands via the (1) x or (2) y parameters.
Woltlab Burning Board 2.2.3
Woltlab Burning Board 2.2.2
1 EDB exploit
NA
CVE-2005-1642
SQL injection vulnerability in the verify_email function in Woltlab Burning Board 2.x and previous versions allows remote malicious users to execute arbitrary SQL commands via the $email variable.
Woltlab Burning Board 2.0
1 EDB exploit
NA
CVE-2005-1327
Cross-site scripting (XSS) vulnerability in pms.php for Woltlab Burning Board 2.3.1 PL2 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the folderid parameter.
Woltlab Burning Board
NA
CVE-2005-0216
Cross-site scripting (XSS) vulnerability in formmail.php in Woltlab Burning Board Lite 1.0.0, 1.0.1e, and possibly other versions, allows remote malicious users to inject arbitrary web script and HTML via the userid parameter.
NA
CVE-2005-0661
SQL injection vulnerability in the getwbbuserdata function in session.php for Woltlab Burning Board 2.0.3 up to and including 2.3.0 allows remote malicious users to execute arbitrary SQL commands via the (1) userid or (2) lastvisit cookie.
Woltlab Burning Board 2.2.1
Woltlab Burning Board 2.3.0
Woltlab Burning Board 2.1.5
Woltlab Burning Board 2.0.3
NA
CVE-2005-1285
Cross-site scripting (XSS) vulnerability in thread.php in WoltLab Burning Board 2.3.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the hilight parameter.
Woltlab Burning Board
1 EDB exploit
NA
CVE-2005-0284
SQL injection vulnerability in addentry.php in Woltlab Burning Book 1.0 Gold, 1.1.1e, and possibly other versions, allows remote malicious users to execute arbitrary SQL commands via the user-agent parameter.
Woltlab Burning Book 1.0 Gold
Woltlab Burning Book 1.1.1e
NA
CVE-2002-1505
SQL injection vulnerability in board.php for WoltLab Burning Board (wBB) 2.0 RC 1 and previous versions allows remote malicious users to modify the database and possibly gain privileges via the boardid parameter.
Woltlab Burning Board 2.0 Beta 5
Woltlab Burning Board 2.0 Beta 3
Woltlab Burning Board 2.0 Beta 4
Woltlab Burning Board
1 EDB exploit
NA
CVE-2002-2021
Cross-site scripting (XSS) vulnerability in WoltLab Burning Board (wbboard) 1.1.1 allows remote malicious users to inject arbitrary web script or HTML via the message parameter.
Woltlab Burning Board 1.1.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »