233 matches found
CVE-2021-20783
Cross-site request forgery CSRF vulnerability in Optical BB unit E-WMTA2.3 allows a remote attacker to hijack the authentication of administrators via a specially crafted page...
CVE-2011-1150
bbPress through 1.0.2 has XSS in /bb-login.php url via the re parameter...
CVE-2010-0341
SQL injection vulnerability in the BB Simple Jobs bbsimplejobs extension 0.1.0 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
SUSE CVE-2022-49174
In the Linux kernel, the following vulnerability has been resolved: ext4: fix ext4mbmarkbb with flexbg with fastcommit In case of flexbg feature which is by default enabled, extents for any given inode might span across blocks from two different block group. ext4mbmarkbb only reads the bufferhead...
SUSE CVE-2024-45023
In the Linux kernel, the following vulnerability has been resolved: md/raid1: Fix data corruption for degraded array with slow disk readbalance will avoid reading from slow disks as much as possible, however, if valid data only lands in slow disks, and a new normal disk is still in recovery,...
PT-2024-38075 · WordPress · Bold Page Builder
Name of the Vulnerable Software and Affected Versions: The Bold Page Builder plugin for WordPress versions up to, and including, 5.0.2 Description: The issue is related to Stored Cross-Site Scripting via the plugin's bt bb button shortcode due to insufficient input sanitization and output escapin...
Malicious code in bb-ui-tools (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 8398af17925a65881b1e463a1cbc606615814d86f9a5bab0db801d391bf6210a The OpenSSF Package Analysis project identified 'bb-ui-tools' @ 1.2.4 npm as malicious. It is considered malicious because: - The package...
MAL-2024-7825 Malicious code in bb-ui-tools (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 8398af17925a65881b1e463a1cbc606615814d86f9a5bab0db801d391bf6210a The OpenSSF Package Analysis project identified 'bb-ui-tools' @ 1.2.4 npm as malicious. It is considered malicious because: - The package...
XenForo 2.2.15 Cross Site Request Forgery Vulnerability
------------------------------------------------------------------------------- XenForo = 2.2.15 Widget::actionSave Cross-Site Request Forgery Vulnerability ------------------------------------------------------------------------------- - Software Link: https://xenforo.com - Affected Versions:...
UBUNTU-CVE-2024-26774
In the Linux kernel, the following vulnerability has been resolved: ext4: avoid dividing by 0 in mbupdateavgfragmentsize when block bitmap corrupt Determine if bbfragments is 0 instead of determining bbfree to eliminate the risk of dividing by zero when the block bitmap is corrupted...
forum-bb-rw.ch Cross Site Scripting vulnerability OBB-3831755
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
WordPress Plugin Inline Image Upload for BBPress Cross-Site Request Forgery Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forgery...
bb-dev.com Cross Site Scripting vulnerability OBB-3819685
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
bb-whv.de Improper Access Control vulnerability OBB-3768132
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
bb-santaelisa.it Cross Site Scripting vulnerability OBB-3570738
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
bb-china.net Cross Site Scripting vulnerability OBB-3554582
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
bb-antiken.de Cross Site Scripting vulnerability OBB-3507576
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
bb-china.net Cross Site Scripting vulnerability OBB-3482111
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
AsmBB 跨站脚本漏洞
AsmBB is johnfound open source a modern web forum engine . AsmBB v2.9.1 version of a security vulnerability , the vulnerability stems from MiniMag.asm and bbcode.asm inventory in the security problem , resulting in cross-site scripting XSS...
PT-2023-22641 · Unknown +1 · Bbcode.Asm +2
Name of the Vulnerable Software and Affected Versions: AsmBB version 2.9.1 Description: The issue is related to multiple cross-site scripting XSS vulnerabilities. These vulnerabilities were found in the MiniMag.asm and bbcode.asm libraries. Recommendations: For AsmBB version 2.9.1, consider...