71 matches found
CVE-2020-37222
Kuicms Php EE 2.0 is affected by a persistent cross-site scripting (XSS) vulnerability. The issue allows unauthenticated attackers to inject arbitrary scripts by submitting crafted content through the bbs reply endpoint (POST to /web/?c=bbs&a=reply) with HTML/JavaScript payloads in the content pa...
CVE-2025-61464
gnuboard gnuboard4 v4.36.04 and before is vulnerable to Second-order SQL Injection via the searchtable in bbs/search.php...
EUVD-2006-1580
Malware in sbrugna...
EUVD-2011-1341
Malware in sbrugna...
ffBull vulnerable to OS command injection
Overview ffBull according to the original report submitted by the reporter provided by Fortunefield is a bulletin board system BBS. ffBull contains an OS command injection vulnerability CWE-78. During the meeting of Committee for authorizing the disclosure of unresolved vulnerabilities held on...
JVN#17176449: ffBull vulnerable to OS command injection
ffBull according to the original report submitted by the reporter provided by Fortunefield is a bulletin board system BBS. ffBull contains an OS command injection vulnerability CWE-78. Impact A remote unauthenticated attacker may execute an arbitrary OS command with the privilege of the running w...
JVN#40523785: Mini Thread vulnerable to cross-site scripting
Mini Thread provided by Flash CGI according to the original report submitted by the reporter is a CGI script for creating a bulletin board system BBS. Mini Thread contains a cross-site scripting vulnerability CWE-79. Impact An arbitrary script may be executed on the web browser of the user...
PT-2022-24983 · Gnuboard5 · Gnuboard5
Name of the Vulnerable Software and Affected Versions: gnuboard5 versions prior to 5.5.8.2.1 Description: A problem was found in the FAQ Key ID Handler component, specifically in the file bbs/faq.php. The issue arises from the manipulation of the fm id argument, leading to cross-site scripting...
Bulletin Board System File Upload Vulnerability (CNVD-2022-63667)
Bulletin Board System is a web forum. bulletin Board System is vulnerable to file upload, which can be exploited by attackers to execute arbitrary code...
diyhi bbs 代码问题漏洞
Bulletin Board System is a web forum. bulletin Board System is vulnerable to file upload, which can be exploited by attackers to execute arbitrary code...
diyhi bbs 代码问题漏洞
Bulletin Board System is a web forum. bulletin Board System is vulnerable to file upload, which can be exploited by attackers to execute arbitrary code...
diyhi bbs 代码问题漏洞
Bulletin Board System is a web forum. bulletin Board System is vulnerable to file upload, which can be exploited by attackers to execute arbitrary code...
diyhi bbs 代码问题漏洞
Bulletin Board System is a web forum. bulletin Board System is vulnerable to file upload, which can be exploited by attackers to execute arbitrary code...
JVN#88277644: Keijiban Tsumiki vulenrable to OS command injection
Keijiban Tsumiki provided by Mash room - Free CGI - is a CGI to provide Bulletin Board System BBS functions. Keijiban Tsumiki contains an OS command injection vulnerability CWE-78. Impact A remote attacker may execute an arbitrary OS command. Solution Consider stop using Keijiban Tsumiki v1.15...
vBulletin 'widget_php' Command Execution
The version of vBulletin running on the remote host is affected by an input-validation flaw in the 'widgetConfig' parameter to the script 'ajax/render/widgetphp' that allows command execution. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...
Easy File Sharing Web Server 7.2 Buffer Overflow
!/usr/bin/python Title : EFS Web Server 7.2 POST HTTP Request Buffer Overflow Author : Touhid M.Shaikh Date : 12 June, 2017 Contact: [email protected] Version: 7.2 category: Remote Exploit Tested on: Windows XP SP3 EN Version 5.1.2600 """ Description What is Easy File Sharing Web Server 7....
Easy File Sharing Web Server 7.2 - 'POST' Remote Buffer Overflow
!/usr/bin/python Title : EFS Web Server 7.2 POST HTTP Request Buffer Overflow Author : Touhid M.Shaikh Date : 12 June, 2017 Contact: [email protected] Version: 7.2 category: Remote Exploit Tested on: Windows XP SP3 EN Version 5.1.2600 """ Description What is Easy File Sharing Web Server 7....
Easy File Sharing Web Server 7.2 - Authentication Bypass
Exploit Title: EFS Web Server 7.2 Authentication Bypass Date: 11-06-2017 Software Link: http://www.sharing-file.com/efssetup.exe Software Version : 7.2 Exploit Author: Touhid M.Shaikh Contact: http://twitter.com/touhidshaikh22 Website: http://touhidshaikh.com/ Description Video PoC and Article...
Let's PHP! p++BBS HTML Injection Vulnerability
Let's PHP! p++BBS is a bulletin board system. Let's PHP! p++BBS suffers from an HTML injection vulnerability that can be exploited by remote attackers to inject malicious script or HTML code, which can be used to obtain sensitive information or hijack user sessions when malicious data is viewed...
PBLang Bulletin Board System 4.x DelPM.PHP Arbitrary Personal Message Deletion Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/12694/info PBLang is reported prone to a vulnerability that can allow a registered user to delete arbitrary personal messages. The vulnerability exists due to a design error leading to a lack of access controls...