Lucene search
K

71 matches found

CVE
CVE
added 2026/05/13 2:22 p.m.16 views

CVE-2020-37222

Kuicms Php EE 2.0 is affected by a persistent cross-site scripting (XSS) vulnerability. The issue allows unauthenticated attackers to inject arbitrary scripts by submitting crafted content through the bbs reply endpoint (POST to /web/?c=bbs&a=reply) with HTML/JavaScript payloads in the content pa...

7.2CVSS5.9AI score0.00311EPSS
Exploits0References4
NVD
NVD
added 2025/10/23 6:16 p.m.5 views

CVE-2025-61464

gnuboard gnuboard4 v4.36.04 and before is vulnerable to Second-order SQL Injection via the searchtable in bbs/search.php...

6.5CVSS0.00209EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2006-1580

Malware in sbrugna...

7.5CVSS6.4AI score0.01111EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2011-1341

Malware in sbrugna...

4.3CVSS6.2AI score0.01223EPSS
Exploits0References7
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2024/03/26 7:7 a.m.5 views

ffBull vulnerable to OS command injection

Overview ffBull according to the original report submitted by the reporter provided by Fortunefield is a bulletin board system BBS. ffBull contains an OS command injection vulnerability CWE-78. During the meeting of Committee for authorizing the disclosure of unresolved vulnerabilities held on...

9.8CVSS7.9AI score0.01284EPSS
Exploits0References3
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2024/03/25 12:0 a.m.20 views

JVN#17176449: ffBull vulnerable to OS command injection

ffBull according to the original report submitted by the reporter provided by Fortunefield is a bulletin board system BBS. ffBull contains an OS command injection vulnerability CWE-78. Impact A remote unauthenticated attacker may execute an arbitrary OS command with the privilege of the running w...

9.8CVSS9.9AI score0.01284EPSS
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2024/03/25 12:0 a.m.15 views

JVN#40523785: Mini Thread vulnerable to cross-site scripting

Mini Thread provided by Flash CGI according to the original report submitted by the reporter is a CGI script for creating a bulletin board system BBS. Mini Thread contains a cross-site scripting vulnerability CWE-79. Impact An arbitrary script may be executed on the web browser of the user...

5.4CVSS6.2AI score0.00293EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2022/11/12 12:0 a.m.9 views

PT-2022-24983 · Gnuboard5 · Gnuboard5

Name of the Vulnerable Software and Affected Versions: gnuboard5 versions prior to 5.5.8.2.1 Description: A problem was found in the FAQ Key ID Handler component, specifically in the file bbs/faq.php. The issue arises from the manipulation of the fm id argument, leading to cross-site scripting...

5.4CVSS6.4AI score0.00385EPSS
Exploits0References7
CNVD
CNVD
added 2022/03/29 12:0 a.m.27 views

Bulletin Board System File Upload Vulnerability (CNVD-2022-63667)

Bulletin Board System is a web forum. bulletin Board System is vulnerable to file upload, which can be exploited by attackers to execute arbitrary code...

7.2CVSS4.7AI score0.01528EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/03/28 12:0 a.m.4 views

diyhi bbs 代码问题漏洞

Bulletin Board System is a web forum. bulletin Board System is vulnerable to file upload, which can be exploited by attackers to execute arbitrary code...

7.2CVSS5.9AI score0.01528EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/03/28 12:0 a.m.3 views

diyhi bbs 代码问题漏洞

Bulletin Board System is a web forum. bulletin Board System is vulnerable to file upload, which can be exploited by attackers to execute arbitrary code...

7.2CVSS5.9AI score0.01528EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/03/28 12:0 a.m.4 views

diyhi bbs 代码问题漏洞

Bulletin Board System is a web forum. bulletin Board System is vulnerable to file upload, which can be exploited by attackers to execute arbitrary code...

7.2CVSS5.9AI score0.01528EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/03/28 12:0 a.m.4 views

diyhi bbs 代码问题漏洞

Bulletin Board System is a web forum. bulletin Board System is vulnerable to file upload, which can be exploited by attackers to execute arbitrary code...

7.2CVSS5.9AI score0.01528EPSS
Exploits1References2
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2020/03/24 12:0 a.m.72 views

JVN#88277644: Keijiban Tsumiki vulenrable to OS command injection

Keijiban Tsumiki provided by Mash room - Free CGI - is a CGI to provide Bulletin Board System BBS functions. Keijiban Tsumiki contains an OS command injection vulnerability CWE-78. Impact A remote attacker may execute an arbitrary OS command. Solution Consider stop using Keijiban Tsumiki v1.15...

10CVSS9.8AI score0.02274EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/10/23 12:0 a.m.66 views

vBulletin 'widget_php' Command Execution

The version of vBulletin running on the remote host is affected by an input-validation flaw in the 'widgetConfig' parameter to the script 'ajax/render/widgetphp' that allows command execution. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...

9.8CVSS8.8AI score0.99728EPSS
Exploits27References2
Packet Storm
Packet Storm
added 2017/06/12 12:0 a.m.44 views

Easy File Sharing Web Server 7.2 Buffer Overflow

!/usr/bin/python Title : EFS Web Server 7.2 POST HTTP Request Buffer Overflow Author : Touhid M.Shaikh Date : 12 June, 2017 Contact: [email protected] Version: 7.2 category: Remote Exploit Tested on: Windows XP SP3 EN Version 5.1.2600 """ Description What is Easy File Sharing Web Server 7....

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2017/06/12 12:0 a.m.50 views

Easy File Sharing Web Server 7.2 - 'POST' Remote Buffer Overflow

!/usr/bin/python Title : EFS Web Server 7.2 POST HTTP Request Buffer Overflow Author : Touhid M.Shaikh Date : 12 June, 2017 Contact: [email protected] Version: 7.2 category: Remote Exploit Tested on: Windows XP SP3 EN Version 5.1.2600 """ Description What is Easy File Sharing Web Server 7....

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2017/06/11 12:0 a.m.41 views

Easy File Sharing Web Server 7.2 - Authentication Bypass

Exploit Title: EFS Web Server 7.2 Authentication Bypass Date: 11-06-2017 Software Link: http://www.sharing-file.com/efssetup.exe Software Version : 7.2 Exploit Author: Touhid M.Shaikh Contact: http://twitter.com/touhidshaikh22 Website: http://touhidshaikh.com/ Description Video PoC and Article...

7.4AI score
Exploits0
CNVD
CNVD
added 2015/12/13 12:0 a.m.1 views

Let's PHP! p++BBS HTML Injection Vulnerability

Let's PHP! p++BBS is a bulletin board system. Let's PHP! p++BBS suffers from an HTML injection vulnerability that can be exploited by remote attackers to inject malicious script or HTML code, which can be used to obtain sensitive information or hijack user sessions when malicious data is viewed...

6.1CVSS6.9AI score0.01009EPSS
Exploits0References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

PBLang Bulletin Board System 4.x DelPM.PHP Arbitrary Personal Message Deletion Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/12694/info PBLang is reported prone to a vulnerability that can allow a registered user to delete arbitrary personal messages. The vulnerability exists due to a design error leading to a lack of access controls...

7.1AI score
Exploits0
Rows per page
Query Builder