CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

163 matches found

RedhatCVE•added 2026/01/09 12:11 p.m.•6 views

CVE-2018-18672

GNUBOARD5 5.3.1.9 has XSS that allows remote attackers to inject arbitrary web script or HTML via the "board head contents" parameter, aka the adm/boardformupdate.php bocontenthead parameter...

6.1CVSS6AI score0.00363EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 12:11 p.m.•4 views

CVE-2018-18674

GNUBOARD5 5.3.1.9 has XSS that allows remote attackers to inject arbitrary web script or HTML via the "board tail contents" parameter, aka the adm/boardformupdate.php bocontenttail parameter...

6.1CVSS6AI score0.00664EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 12:11 p.m.•6 views

CVE-2018-18669

GNUBOARD5 5.3.1.9 has XSS that allows remote attackers to inject arbitrary web script or HTML via the "board title contents" parameter, aka the adm/boardformupdate.php bosubject parameter...

6.1CVSS6AI score0.00363EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 12:10 p.m.•4 views

CVE-2018-18678

GNUBOARD5 before 5.3.2.0 has XSS that allows remote attackers to inject arbitrary web script or HTML via the "board group extra contents" parameter, aka the adm/boardgroupformupdate.php gr110 parameter...

6.1CVSS6AI score0.00664EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 12:10 p.m.•5 views

CVE-2018-18670

GNUBOARD5 5.3.1.9 has XSS that allows remote attackers to inject arbitrary web script or HTML via the "Extra Contents" parameter, aka the adm/configformupdate.php cf110 parameter...

6.1CVSS6AI score0.00363EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 12:10 p.m.•9 views

CVE-2018-18675

GNUBOARD5 5.3.1.9 has XSS that allows remote attackers to inject arbitrary web script or HTML via the "mobile board title contents" parameter, aka the adm/boardformupdate.php bomobilesubject parameter...

6.1CVSS6AI score0.00363EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 12:9 p.m.•4 views

CVE-2018-18671

GNUBOARD5 5.3.1.9 has XSS that allows remote attackers to inject arbitrary web script or HTML via the "mobile board head contents" parameter, aka the adm/boardformupdate.php bomobilecontenthead parameter...

6.1CVSS6AI score0.00363EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 12:8 p.m.•5 views

CVE-2018-18673

GNUBOARD5 5.3.1.9 has XSS that allows remote attackers to inject arbitrary web script or HTML via the "Menu Link" parameter, aka the adm/menulistupdate.php melink parameter...

6.1CVSS6AI score0.00363EPSS

Exploits0References1