Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
woltlab vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2005-0284
SQL injection vulnerability in addentry.php in Woltlab Burning Book 1.0 Gold, 1.1.1e, and possibly other versions, allows remote malicious users to execute arbitrary SQL commands via the user-agent parameter.
Woltlab Burning Book 1.0 Gold
Woltlab Burning Book 1.1.1e
383
VMScore
CVE-2007-1443
Multiple cross-site scripting (XSS) vulnerabilities in register.php in Woltlab Burning Board (wBB) 2.3.6 and Burning Board Lite 1.0.2pl3e allow remote malicious users to inject arbitrary web script or HTML via the (1) r_username, (2) r_email, (3) r_password, (4) r_confirmpassword...
Woltlab Burning Board 2.3.6
Woltlab Burning Board Lite 1.0.2 Pl3e
755
VMScore
CVE-2007-6518
Multiple SQL injection vulnerabilities in search.php in WoltLab Burning Board (wBB) Lite 1.0.2 pl3e allow remote malicious users to execute arbitrary SQL commands via the (1) showposts, (2) sortby, and (3) sortorder parameters.
Woltlab Burning Board Lite 1.0.2 Pl3e
Woltlab Burning Board Lite 1.0.2
1 EDB exploit
685
VMScore
CVE-2006-1324
Cross-site scripting (XSS) vulnerability in acp/lib/class_db_mysql.php in Woltlab Burning Board (wBB) 2.3.4 allows remote malicious users to inject arbitrary web script or HTML via the errormsg parameter when a SQL error is generated.
Woltlab Burning Board
1 EDB exploit
685
VMScore
CVE-2005-1285
Cross-site scripting (XSS) vulnerability in thread.php in WoltLab Burning Board 2.3.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the hilight parameter.
Woltlab Burning Board
1 EDB exploit
383
VMScore
CVE-2005-1327
Cross-site scripting (XSS) vulnerability in pms.php for Woltlab Burning Board 2.3.1 PL2 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the folderid parameter.
Woltlab Burning Board
765
VMScore
CVE-2007-0388
SQL injection vulnerability in search.php in Woltlab Burning Board (wBB) 1.0.2 and previous versions, and 2.3.6 and previous versions in the 2.x series, allows remote malicious users to execute arbitrary SQL commands via the boardids[1] and other boardids[] parameters.
Woltlab Burning Board
3 EDB exploits
668
VMScore
CVE-2006-3218
SQL injection vulnerability in profile.php in Woltlab Burning Board (WBB) 2.1.6 allows remote malicious users to execute arbitrary SQL commands via the userid parameter.
Woltlab Burning Board 2.1.6
605
VMScore
CVE-2006-4317
Cross-site scripting (XSS) vulnerability in attachment.php in WoltLab Burning Board (WBB) 2.3.5 allows remote malicious users to inject arbitrary web script or HTML via a GIF image that contains URL-encoded Javascript.
Woltlab Burning Board 2.3.5
755
VMScore
CVE-2005-1642
SQL injection vulnerability in the verify_email function in Woltlab Burning Board 2.x and previous versions allows remote malicious users to execute arbitrary SQL commands via the $email variable.
Woltlab Burning Board 2.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »