Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Oxygen Security Vulnerabilities

cve
cve

CVE-2006-1572

SQL injection vulnerability in post.php in Oxygen 1.1.3 allows remote attackers to execute arbitrary SQL commands via the fid parameter in a newthread action.

8.2AI Score

0.022EPSS

2006-04-01 12:04 AM
28
cve
cve

CVE-2006-6280

SQL injection vulnerability in viewthread.php in Oxygen (O2PHP Bulletin Board) 1.1.3 and earlier allows remote attackers to execute arbitrary SQL commands via the pid parameter, a different vector than CVE-2006-1572.

8.2AI Score

0.022EPSS

2006-12-04 11:28 AM
19
cve
cve

CVE-2008-2816

SQL injection vulnerability in post.php in Oxygen (aka O2PHP Bulletin Board) 2.0 allows remote attackers to execute arbitrary SQL commands via the repquote parameter in a reply action, a different vector than CVE-2006-1572.

8.2AI Score

0.022EPSS

2008-06-23 05:41 PM
20
cve
cve

CVE-2022-46841

Cross-Site Request Forgery (CSRF) vulnerability in Soflyy Oxygen Builder plugin <= 4.4 versions.

8.8CVSS

8.8AI Score

0.001EPSS

2023-10-03 11:15 AM
44
cve
cve

CVE-2023-6938

The Oxygen Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via a custom field in all versions up to, and including, 4.8 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, ...

6.4CVSS

5.2AI Score

0.0004EPSS

2024-01-11 03:15 PM
11