Lucene search
+L

24 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2002-0118

Malware in sbrugna...

7.5CVSS6.4AI score0.07101EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2001-0880

Malware in sbrugna...

5CVSS6.4AI score0.01878EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-29835

Malicious code in bioql PyPI...

5.3CVSS5.7AI score0.00648EPSS
Exploits0References5
Prion
Prion
added 2023/04/27 9:15 p.m.18 views

Design/Logic Flaw

Infopop Ultimate Bulletin Board up to v5.47a was discovered to allow all messages posted inside private forums to be disclosed by unauthenticated users via the quote reply feature...

5CVSS5.4AI score0.00648EPSS
Exploits0References5Affected Software1
CNNVD
CNNVD
added 2023/04/27 12:0 a.m.6 views

Infopop Ultimate Bulletin Board 安全漏洞

Infopop Ultimate Bulletin Board is a web forum system from Infopop, Inc. A security vulnerability exists in Infopop Ultimate Bulletin Board version 5.47a and prior versions, which originated from a vulnerability that allows unauthenticated users to view messages in private forums by referring to...

5.3CVSS5.7AI score0.00648EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2023/04/27 12:0 a.m.10 views

CVE-2022-25091

Infopop Ultimate Bulletin Board up to v5.47a was discovered to allow all messages posted inside private forums to be disclosed by unauthenticated users via the quote reply feature...

7.3AI score0.00648EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/04/27 12:0 a.m.7 views

PT-2023-12779 · Infopop · Infopop Ultimate Bulletin Board

Name of the Vulnerable Software and Affected Versions: Infopop Ultimate Bulletin Board versions up to 5.47a Description: The issue allows all messages posted inside private forums to be disclosed by unauthenticated users via the quote reply feature. Recommendations: For Infopop Ultimate Bulletin...

5.3CVSS5.2AI score0.00648EPSS
Exploits0References7
CVE
CVE
added 2023/04/27 12:0 a.m.52 views

CVE-2022-25091

The CVE-2022-25091 entry concerns Infopop Ultimate Bulletin Board up to version 5.47a. The vulnerability allows unauthenticated users to disclose all messages posted inside private forums via the quote reply feature. The issue is a confidentiality impact (C:L) with no integrity or availability im...

5.3CVSS5.4AI score0.00648EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2023/04/27 12:0 a.m.40 views

CVE-2022-25091

Infopop Ultimate Bulletin Board up to v5.47a was discovered to allow all messages posted inside private forums to be disclosed by unauthenticated users via the quote reply feature...

5.7AI score0.00648EPSS
Exploits0References5
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

Ultimate Bulletin Board 6.0/6.2 UBBER Cookie HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8212/info Ultimate Bulletin Board has been reported prone to a HTML injection vulnerability. The issue likely presents itself due to a lack of sanitization performed on cookie data. It has been reported that a remote...

7.1AI score
Exploits0
NVD
NVD
added 2003/08/18 4:0 a.m.14 views

CVE-2003-0587

Cross-site scripting XSS vulnerability in Infopop Ultimate Bulletin Board UBB 6.x allows remote authenticated users to execute arbitrary web script and gain administrative access via the "displayed name" attribute of the "ubber" cookie...

6.9CVSS6.1AI score0.00545EPSS
Exploits0References1
NVD
NVD
added 2002/03/25 5:0 a.m.15 views

CVE-2002-0118

Cross-site scripting vulnerability in Infopop Ultimate Bulletin Board UBB 6.2.0 Beta Release 1.0 allows remote attackers to execute arbitrary script and steal cookies via a message containing encoded Javascript in an IMG tag...

7.5CVSS6.9AI score0.07101EPSS
Exploits1References3
Cvelist
Cvelist
added 2002/03/15 5:0 a.m.21 views

CVE-2002-0118

Cross-site scripting vulnerability in Infopop Ultimate Bulletin Board UBB 6.2.0 Beta Release 1.0 allows remote attackers to execute arbitrary script and steal cookies via a message containing encoded Javascript in an IMG tag...

6.9AI score0.07101EPSS
Exploits1References3
Cvelist
Cvelist
added 2002/02/02 5:0 a.m.22 views

CVE-2001-0897

Cross-site scripting vulnerability in Infopop Ultimate Bulletin Board UBB before 5.47e allows remote attackers to steal user cookies via an IMG tag that references an about: URL with an onerror field...

6.3AI score0.01878EPSS
Exploits0References2
securityvulns
securityvulns
added 2002/01/10 12:0 a.m.37 views

Дырки в Ultimate Bulletin Board (javascript, cookie)

Можно вставить javascript в таг IMG, кроме того при проверке куки не проверяется пароль пользователя...

0.5AI score
Exploits0References3Affected Software2
NVD
NVD
added 2001/11/15 5:0 a.m.13 views

CVE-2001-0897

Cross-site scripting vulnerability in Infopop Ultimate Bulletin Board UBB before 5.47e allows remote attackers to steal user cookies via an IMG tag that references an about: URL with an onerror field...

5CVSS6.3AI score0.01878EPSS
Exploits0References2
securityvulns
securityvulns
added 2001/04/06 12:0 a.m.27 views

Дырка в Ultimate Bulletin Board

Можно посмотреть сообщения в закрытой паролем конференции используя функцию ответа с квотированием...

0.7AI score
Exploits0References2Affected Software1
securityvulns
securityvulns
added 2001/02/23 12:0 a.m.27 views

More on Ultimate Bullering Board

In response to Scott Ashman's post about UBB. After i discovered this bug last week i tried to contact infopop on 3 email adresses from their contact page i finally managed to find one that didn't bounce, but i haven't recieved any response yet. Anyway, Scott describes a way to retrieve other...

6.9AI score
Exploits0
securityvulns
securityvulns
added 2000/11/21 12:0 a.m.2395 views

En: ubb hole

----- Original Message ----- From: tdf To: [email protected] Sent: Monday, November 20, 2000 2:46 PM Subject: ubb hole ----------------------------------------------------------------------------------- Ultimate Bulletin Board - Private forums security hole, by tdf [email protected]...

0.2AI score
Exploits0
Cvelist
Cvelist
added 2000/10/13 4:0 a.m.19 views

CVE-2000-0141

Infopop Ultimate Bulletin Board UBB allows remote attackers to execute commands via shell metacharacters in the topic hidden field...

7.2AI score0.0348EPSS
Exploits0References4
Rows per page
Query Builder