16 matches found
Burning Board 2.3.1 - SQL Injection
Burning Board 2.3.1 - SQL Injection Burning Board SQL Injection Vendor: Woltlab GmbH Product: Burning Board Version: = 2.3.1 Website: http://www.woltlab.de/ BID: 13643 CVE: CVE-2005-1642 OSVDB: 16575 SECUNIA: 15395 PACKETSTORM: 39262 Description: Burning Board is a popular, multi purpose forum /...
Burning Board < 2.3.1 - SQL Injection
Burning Board SQL Injection Vendor: Woltlab GmbH Product: Burning Board Version: = 2.3.1 Website: http://www.woltlab.de/ BID: 13643 CVE: CVE-2005-1642 OSVDB: 16575 SECUNIA: 15395 PACKETSTORM: 39262 Description: Burning Board is a popular, multi purpose forum / community software offered by WoltLa...
Burning Board 1.1.1 URL Parameter Manipulation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4512/info Burning Board is web forum software. It is written in PHP, back-ended by MySQL, and will run on most Unix and Linux variants as well as Microsoft Windows. An attacker may allegedly create a malicious link which ...
Burning Board 3.1.5 Path Disclosure
--------------------------------------------------------------------- Exploit Title : Burning Board 3.1.5 Full Path Disclosure --------------------------------------------------------------------- Author : linc0ln.dll Date : 19/06/11 Site : http://linc0ln.pl/ @ : linc0lnate-o-u.org...
Burning Board 3.1.5 - Full Path Disclosure
Burning Board 3.1.5 - Full Path Disclosure --------------------------------------------------------------------- Exploit Title : Burning Board 3.1.5 Full Path Disclosure --------------------------------------------------------------------- Author : linc0ln.dll Date : 19/06/11 Site :...
Burning Board 3.1.5 Full Path Disclosure
Exploit for php platform in category web applications --------------------------------------------------------------------- Exploit Title : Burning Board 3.1.5 Full Path Disclosure --------------------------------------------------------------------- Author : linc0ln.dll Date : 19/06/11 Site :...
Burning Board 3.1.5 - Full Path Disclosure
--------------------------------------------------------------------- Exploit Title : Burning Board 3.1.5 Full Path Disclosure --------------------------------------------------------------------- Author : linc0ln.dll Date : 19/06/11 Site : http://linc0ln.pl/ @ : linc0lnate-o-u.org...
Woltlab Burning Board SQL injection flaw
The remote web server contains a PHP script that is susceptible to SQL injection attacks. Description: The remote version of Burning Board includes an optional module, the Database module, that fails to properly sanitize the 'fileid' parameter of the 'infodb.php' script, which can be exploited to...
Galerie 3.2 (pic) WBB Lite Addon Blind SQL Injection Exploit
No description provided by source. !/usr/bin/perl Galerie 3.2 galerie.php Remote "Blind" SQL Injection found by: J0hn.X3r exploit written by: J0hn.X3r and electron1x Date: 05.10.2008 Dork: "Galerie 3.2 © 2004 by progressive" Contact: J0hn.X3r + ICQ: 573813 + Mail: J0hn.X3ratgmail.com electron1x ...
CVE-2008-1717
CVE-2008-1717 affects WoltLab Community Framework (WCF) 1.0.6 in WoltLab Burning Board 3.0.5. The vulnerability allows remote attackers to obtain the full file path via invalid (1) page and (2) form parameters, which leaks the path from an exception handler when a valid class cannot be found. Thi...
Burning Board search.php boardids Parameter SQL Injection
Binary data 3888.prm...
Woltlab Burning Board 1.0.22.3.6 - search.php SQL Injection (1)
Woltlab Burning Board 1.0.22.3.6 - search.php SQL Injection 1 ?php / http://www.undergroundagents.de coded by silent vapor [email protected] / printr' -------------------------------------------------------------------------------- Woltlab Burning Board Lite = 1.0.2 GetHashes over...
Woltlab Burning Board Lite 1.0.2 Blind SQL Injection Exploit
No description provided by source. ?php printr' -------------------------------------------------------------------------------- Woltlab Burning Board Lite 1.0.2 ZendHashDelKeyOrIndex / / blind sql injection exploit by rgod [email protected] site: http://retrogod.altervista.org dork: "Powered by...
Woltlab Burning Board modcp.php Multiple Parameter SQL Injection
The remote version of Burning Board / Burning Board Lite is prone to SQL injection attacks due to its failure to sanitize user-supplied input to the 'x' and 'y' parameters of the 'modcp.php' script before using it in database queries. Provided an attacker has moderator privileges, these flaws may...
woltlabXSS231.txt
SePro Bugtraq WBB - WoltLab Burning Board = 2.3.1 - XSS Vulnerability 22.04.05 Vendor: WoltLab URL: http://www.woltlab.de/ Version: = 2.3.1 Type: XSS Discovered by deluxe89 Description: -------------------------------- The WoltLab Burning Board is a high customisable forum software for every kind...
Burning Board 1.1.1 - URL Manipulation
Burning Board 1.1.1 - URL Manipulation source: https://www.securityfocus.com/bid/4512/info Burning Board is web forum software. It is written in PHP, back-ended by MySQL, and will run on most Unix and Linux variants as well as Microsoft Windows. An attacker may allegedly create a malicious link...