Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xennobb xennobb vulnerabilities and exploits
(subscribe to this query)
505
VMScore
CVE-2006-4161
Directory traversal vulnerability in the avatar_gallery action in profile.php in XennoBB 2.1.0 and previous versions allows remote malicious users to read arbitrary files via a .. (dot dot) in the category parameter.
Xennobb Xennobb 1.0.3
Xennobb Xennobb 1.0.4
Xennobb Xennobb 1.0
Xennobb Xennobb 1.0.1
Xennobb Xennobb 1.0.2
Xennobb Xennobb 1.0.5
Xennobb Xennobb
1 EDB exploit
231
VMScore
CVE-2006-3241
Cross-site scripting (XSS) vulnerability in messages.php in XennoBB 1.0.5 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the tid parameter.
Xennobb Xennobb 1.0.2
Xennobb Xennobb 1.0.3
Xennobb Xennobb 1.0.4
Xennobb Xennobb 1.0.5
Xennobb Xennobb 1.0
Xennobb Xennobb 1.0.1
755
VMScore
CVE-2006-4279
SQL injection vulnerability in topic_post.php in XennoBB 2.2.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the icon_topic parameter.
Xennobb Xennobb 2.2.1
Xennobb Xennobb 2.1
Xennobb Xennobb 2.2
Xennobb Xennobb 1.0.5
Xennobb Xennobb 1.0.6
1 EDB exploit
755
VMScore
CVE-2006-4025
SQL injection vulnerability in profile.php in XennoBB 2.1.0 and previous versions allows remote authenticated users to execute arbitrary SQL commands via the (1) bday_day, (2) bday_month, and (3) bday_year parameters in the personal section.
Xennobb Xennobb
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started