CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2008-3059

Malware in sbrugna...

4.3CVSS6.4AI score0.00254EPSS

Exploits0References4

Prion•added 2008/07/08 6:41 p.m.•15 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in MyBB before 1.2.13 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to 1 portal.php and 2 inc/functionspost.php...

4.3CVSS6.1AI score0.00254EPSS

Exploits0References3Affected Software1

NVD•added 2008/07/08 6:41 p.m.•11 views

CVE-2008-3069

4.3CVSS5.9AI score0.00254EPSS

Exploits0References3

securityvulns•added 2006/08/31 12:0 a.m.•48 views

[KAPDA]MyBB 1.1.7~ htmlspeacialchar_uni(), fixjavascript(), functions_post.php ~[url]XSS attack

ORIGINAL ADVISORY: http://myimei.com/security/2006-08-15/mybb-117-htmlspeacialcharuni-fixjavascript-functionspostphp-urlxss-attack.html http://kapda.ir/page-advisory.html ——————-Summary—————- Software: MyBB Sowtware’s Web Site: http://www.mybboard.com Versions: 1.1.7 Class: Remote Status: Unpatch...

0.9AI score

Exploits0

Cvelist•added 2006/07/21 12:0 a.m.•17 views

CVE-2006-3761

Cross-site scripting XSS vulnerability in inc/functionspost.php in MyBB aka MyBulletinBoard 1.0 RC2 through 1.1.4 allows remote attackers to inject arbitrary web script or HTML via a javascript URI with an SGML numeric character reference in the url BBCode tag, as demonstrated using "javacript"...

5.6AI score0.01328EPSS

Exploits1References9

Cvelist•added 2006/06/13 1:0 a.m.•17 views

CVE-2006-2908

The domecode function in inc/functionspost.php in MyBulletinBoard MyBB 1.1.2, and possibly other versions, allows remote attackers to execute arbitrary PHP code via the username field, which is used in a pregreplace function call with a /e executable modifier...

7.6AI score0.1141EPSS

Exploits1References11

Prion•added 2006/04/05 10:4 a.m.•17 views

Cross site scripting

Cross-site scripting XSS vulnerability in inc/functionspost.php in MyBB aka MyBulletinBoard 1.10 allows remote attackers to inject arbitrary web script or HTML via a JavaScript event in a BBCode email tag, as demonstrated using the onmousemove event...

6.8CVSS5.9AI score0.01631EPSS

Exploits0References6Affected Software1

CVE•added 2006/04/05 10:0 a.m.•47 views

CVE-2006-1625

CVE-2006-1625 affects MyBB (aka MyBulletinBoard) 1.10, where a cross-site scripting (XSS) flaw exists in the file inc/functions_post.php . The vulnerability allows remote attackers to inject arbitrary script/HTML via a JavaScript event in a BBCode email tag, demonstrated using the onmousemove eve...

6.8CVSS5.5AI score0.01631EPSS

Exploits0References6Affected Software1

securityvulns•added 2006/04/04 12:0 a.m.•32 views

MyBB 1.10 New CrossSiteScripting

MyBB 1.10 CrossSiteScripting File :- inc/functionspost.php BugTraqer :- Devil-00 [email protected] we can do attack by some unfilter tags :- Post New Thread Or New Replay With This Code :D And Try To Move The Mouse Over The Email ; code email=a" onmousemove="alertdocument.cookie;"...

1.3AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by