167 matches found
UBB.threads < 6.5.2 Beta 2 XSS / SQL Injection
Binary data 3032.prm...
UBBCentral UBB.Threads 5.5.16.x - modifypost.php?Number SQL Injection
UBBCentral UBB.Threads 5.5.16.x - modifypost.php?Number SQL Injection source: https://www.securityfocus.com/bid/14052/info UBB.Threads is prone to multiple SQL injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A...
[SA15805] UBB.threads Multiple Vulnerabilities
---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...
UBBCentral UBB.Threads 5.5.16.x - notifymod.php?Number SQL Injection
UBBCentral UBB.Threads 5.5.16.x - notifymod.php?Number SQL Injection source: https://www.securityfocus.com/bid/14052/info UBB.Threads is prone to multiple SQL injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A...
UBBCentral UBB.Threads 5.5.16.x - viewmessage.php?message SQL Injection
UBBCentral UBB.Threads 5.5.16.x - viewmessage.php?message SQL Injection source: https://www.securityfocus.com/bid/14052/info UBB.Threads is prone to multiple SQL injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A...
UBBCentral UBB.Threads 5.5.16.x - calendar.php Multiple SQL Injections
UBBCentral UBB.Threads 5.5.16.x - calendar.php Multiple SQL Injections source: https://www.securityfocus.com/bid/14052/info UBB.Threads is prone to multiple SQL injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A...
UBBCentral UBB.Threads 5.5.1/6.x - 'modifypost.php?Number' SQL Injection
source: https://www.securityfocus.com/bid/14052/info UBB.Threads is prone to multiple SQL injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker to compromise the application,...
UBBCentral UBB.Threads 5.5.1/6.x - 'addfav.php?main' SQL Injection
source: https://www.securityfocus.com/bid/14052/info UBB.Threads is prone to multiple SQL injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker to compromise the application,...
UBBCentral UBB.Threads 5.5.1/6.x - 'viewmessage.php?message' SQL Injection
source: https://www.securityfocus.com/bid/14052/info UBB.Threads is prone to multiple SQL injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker to compromise the application,...
UBBCentral UBB.Threads 5.5.1/6.x - 'calendar.php' Multiple SQL Injections
source: https://www.securityfocus.com/bid/14052/info UBB.Threads is prone to multiple SQL injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker to compromise the application,...
UBBCentral UBB.Threads 5.5.1/6.x - 'grabnext.php?posted' SQL Injection
source: https://www.securityfocus.com/bid/14052/info UBB.Threads is prone to multiple SQL injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker to compromise the application,...
UBBCentral UBB.Threads 5.5.16.x - addfav.php?main SQL Injection
UBBCentral UBB.Threads 5.5.16.x - addfav.php?main SQL Injection source: https://www.securityfocus.com/bid/14052/info UBB.Threads is prone to multiple SQL injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful...
UBBCentral UBB.Threads 5.5.1/6.x - 'notifymod.php?Number' SQL Injection
source: https://www.securityfocus.com/bid/14052/info UBB.Threads is prone to multiple SQL injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker to compromise the application,...
CVE-2005-0726
SQL injection vulnerability in editpost.php in UBB.threads 6.0 allows remote attackers to execute arbitrary SQL commands via the Number parameter...
CVE-2005-1199
SQL injection vulnerability in printthread.php in UBB.Threads allows remote attackers to execute arbitrary SQL commands via the main parameter...
CVE-2005-1199
SQL injection vulnerability in printthread.php in UBB.Threads allows remote attackers to execute arbitrary SQL commands via the main parameter...
CVE-2005-1199
This CVE refers to an SQL injection in UBB.Threads, specifically in printthread.php, where the main parameter is exploitable due to insufficient input validation. The vulnerability affects UBB.Threads installations that process that script (e.g., historical references to versions around 6.5.x bet...
UBB.threads < 6.5.2 beta Multiple Vulnerabilities
The remote host is running a version of UBB.threads that suffers from multiple vulnerabilities due to insufficient input validation - local file inclusion, HTTP response splitting, SQL injection, and cross-site scripting. These flaws may allow an attacker to completely compromise the affected...
ubbSQL.txt
ADZ Security Team =================== Info Program: UBB.threads Version: 6 Module: editpost.php Bug type: SQL Injection Vendor site: http://www.ubbcentral.com/ubbthreads/ =================== Bug discription at editpost.php we can see this code: // START $Cat = getinput"Cat","get"; $Board =...
UBB.threads 6 SQL Injection
ADZ Security Team =================== Info Program: UBB.threads Version: 6 Module: editpost.php Bug type: SQL Injection Vendor site: http://www.ubbcentral.com/ubbthreads/ =================== Bug discription at editpost.php we can see this code: // START $Cat = getinput"Cat","get"; $Board =...