4 matches found
CVE-2005-2563
CVE-2005-2563 involves multiple XSS vulnerabilities in Gravity Board X (GBX) 1.1. The flaws allow remote attackers to inject arbitrary web script or HTML via (1) the board_id parameter to deletethread.php and (2) the template. The cited sources describe the affected software and the two attack ve...
CVE-2005-2564
CVE-2005-2564 affects Gravity Board X (GBX) 1.1. It is a direct static code injection vulnerability in editcss.php where the csscontent parameter is directly inserted into gbxfinal.css, allowing remote attackers to execute arbitrary PHP code, HTML, and script. The NVD entry documents a network-ex...
CVE-2005-2562
CVE-2005-2562 is an SQL injection vulnerability in Gravity Board X (GBX) 1.1 that allows remote attackers to bypass authentication via the login field and execute arbitrary SQL commands. Multiple connected documents corroborate injections affecting GBX 1.1, enabling credential bypass and potentia...
CVE-2005-2565
CVE-2005-2565 concerns Gravity Board X (GBX) 1.1. The vulnerability is an information-disclosure in which error messages from several GBX pages (e.g., deletethread.php with a perm value, ban.php, addnews.php, banned.php, boardstats.php, adminform.php, /forms/admininfo.php, /forms/announcements.ph...