Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
yabb yabb 1.5.2 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-3275
SQL injection vulnerability in profile.php in YaBB SE 1.5.5 and previous versions allows remote malicious users to execute SQL commands via a double-encoded user parameter in a viewprofile action.
Yabb Yabb 1.5.1
Yabb Yabb
Yabb Yabb 1.5.2
Yabb Yabb 1.5.4
NA
CVE-2006-4157
Cross-site scripting (XSS) vulnerability in index.php in Yet another Bulletin Board (YaBB) allows remote malicious users to inject arbitrary web script or HTML via the categories parameter.
Yabb Yabb 1.5.5b
Yabb Yabb 1.5.4
Yabb Yabb 1.5.5
Yabb Yabb 1.5.1
Yabb Yabb 1.5.2
1 EDB exploit
NA
CVE-2003-0275
SSI.php in YaBB SE 1.5.2 allows remote malicious users to execute arbitrary PHP code by modifying the sourcedir parameter to reference a URL on a remote web server that contains the code.
Yabb Yabb 1.5.2
NA
CVE-2004-2754
SQL injection vulnerability in SSI.php in YaBB SE 1.5.4, 1.5.3, and possibly other versions prior to 1.5.5 allows remote malicious users to execute arbitrary SQL commands via the ID_MEMBER parameter to the (1) recentTopics and (2) welcome functions.
Yabb Yabb Se 0.8
Yabb Yabb Se 1.1.3
Yabb Yabb Se 1.4.1
Yabb Yabb Se 1.5.3
Yabb Yabb Se 1.5.4
Yabb Yabb Se 1.5.1
Yabb Yabb Se 1.5.2
Yabb Yabb Se 1.5.0
Yabb Yabb Se 1.5.1 Rc1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started