5 matches found
CVE-2012-4036
Unrestricted file upload vulnerability in admin.php in PBBoard 2.1.4 allows remote administrators to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a direct request to the file in the addons directory. NOTE: this vulnerability can be leveraged b...
CVE-2012-4036
PBBoard 2.1.4 is affected by an unrestricted file upload in admin.php that lets remote admins upload a file with an executable extension to the addons directory and access it directly, potentially executing arbitrary PHP code. This vulnerability is tied to CVE-2012-4036 and can be leveraged via C...
Multiple vulnerabilities in PBBoard
Advisory ID: HTB23101 Product: PBBoard Vendor: www.pbboard.com Vulnerable Versions: 2.1.4 and probably prior Tested Version: 2.1.4 Vendor Notification: July 18, 2012 Public Disclosure: August 8, 2012 Vulnerability Type: SQL Injection CWE-89, Improper Authentication CWE-287, Improper Access Contro...
PBBoard 2.1.4 SQL Injection / Improper Authentication / Broken Access Control
Exploit for php platform in category web applications Vendor: www.pbboard.com Vulnerable Versions: 2.1.4 and probably prior Tested Version: 2.1.4 Vendor Notification: July 18, 2012 Public Disclosure: August 8, 2012 Vulnerability Type: SQL Injection CWE-89, Improper Authentication CWE-287, Imprope...
PBBoard 2.1.4 SQL Injection / Improper Authentication / Broken Access Control
Advisory ID: HTB23101 Product: PBBoard Vendor: www.pbboard.com Vulnerable Versions: 2.1.4 and probably prior Tested Version: 2.1.4 Vendor Notification: July 18, 2012 Public Disclosure: August 8, 2012 Vulnerability Type: SQL Injection CWE-89, Improper Authentication CWE-287, Improper Access Contro...