CVE-2005-2580

CVE-2005-2580 affects MyBulletinBoard (MyBB) 1.00 RC4 with Security Patch. The vulnerability stems from improper sanitization of user input, enabling SQL injection via the Username field in index.php or member.php, via the action parameter in search.php or member.php, or via the polloptions param...

CVE-2005-2580

Multiple SQL injection vulnerabilities in MyBulletinBoard MyBB 1.00 RC4 with Security Patch allow remote attackers to execute arbitrary SQL commands via the Username field in 1 index.php or 2 member.php, action parameter to 3 search.php or 4 member.php, or 5 polloptions parameter to polls.php...

CVE-2005-2580

Multiple SQL injection vulnerabilities in MyBulletinBoard MyBB 1.00 RC4 with Security Patch allow remote attackers to execute arbitrary SQL commands via the Username field in 1 index.php or 2 member.php, action parameter to 3 search.php or 4 member.php, or 5 polloptions parameter to polls.php...

SQL IN Open Bulletin Board

Class: Input Validation Error Remote: Yes Local: Yes Credit: ABDUCTER ---- [email protected] OR [email protected] Vulnerable: Powered by Open Bulletin Board ALL VERSION info :- openbb is APOPULAR FORUM HAVE MANY VERSION U CAN FIND SOURCE OF FORUM IN http://www.openbb.com/ discussi...

CVE-2005-1832

Multiple cross-site scripting XSS vulnerabilities in MyBulletinBoard MyBB 1.00 RC4 and earlier allow remote attackers to execute arbitrary web script or HTML via the 1 forums, 2 version, or 3 limit parameter to misc.php, 4 page or 5 datecut parameter to forumdisplay.php, 6 username, 7 email, or 8...

CVE-2005-1629

Photopost PHP Pro contains a SQL injection in member.php via the verifykey parameter, allowing remote attackers to execute arbitrary SQL commands. Root cause: unsanitized input used in SQL queries. Affected component: Photopost PHP Pro (member.php). Exploitation status is not detailed in the prov...

CVE-2005-1629

SQL injection vulnerability in member.php for Photopost PHP Pro allows remote attackers to execute arbitrary SQL commands via the verifykey parameter...

PhotoPost PHP Pro < 5.02 RC4 member.php uid Parameter SQL Injection

Binary data 2903.prm...

CVE-2005-0282

SQL injection vulnerability in member.php in MyBulletinBoard MyBB allows remote attackers to execute arbitrary SQL commands via the uid parameter...

CVE-2005-0413

Multiple SQL injection vulnerabilities in MyPHP Forum 1.0 allow remote attackers to execute arbitrary SQL commands via 1 the fid in forum.php, 2 the member parameter in member.php, 3 the email parameter in forgot.php, or 4 the nbuser or nbpass parameters in include.php. NOTE: it was later reporte...

CVE-2003-0375

Cross-site scripting XSS vulnerability in member.php of XMBforum XMB 1.8.x aka Partagium allows remote attackers to insert arbitrary HTML and web script via the "member" parameter...

CVE-2003-0375

Cross-site scripting XSS vulnerability in member.php of XMBforum XMB 1.8.x aka Partagium allows remote attackers to insert arbitrary HTML and web script via the "member" parameter...

OpenBB 1.01.1 - member.php SQL Injection

OpenBB 1.01.1 - member.php SQL Injection source: https://www.securityfocus.com/bid/7405/info It has been reported that OpenBB does not properly check input passed via the 'member.php' script. Because of this, an attacker may be able to inject arbitrary commands to the database in the context of t...

OpenBB 1.0/1.1 - &#039;member.php&#039; SQL Injection

source: https://www.securityfocus.com/bid/7405/info It has been reported that OpenBB does not properly check input passed via the 'member.php' script. Because of this, an attacker may be able to inject arbitrary commands to the database in the context of the bulletin board software. The...

XMB Forum 1.6 - Magic Lantern Cross-Site Scripting

XMB Forum 1.6 - Magic Lantern Cross-Site Scripting source: https://www.securityfocus.com/bid/4721/info XMB Forum 1.6 Magic Lantern is a web-based discussion forum. It is vulnerable to a number of cross-site scripting issues because of improper filtering of user input. 1. The first involves...

XMB Forum 1.6 - Magic Lantern Cross-Site Scripting

source: https://www.securityfocus.com/bid/4721/info XMB Forum 1.6 Magic Lantern is a web-based discussion forum. It is vulnerable to a number of cross-site scripting issues because of improper filtering of user input. 1. The first involves 'member.php'; submitting script to the variable 'member' ...