Lucene search
K

1275 matches found

NVD
NVD
added 2008/07/03 6:41 p.m.13 views

CVE-2008-2996

Multiple SQL injection vulnerabilities in index.php in Gravity Board X GBX 2.0 Beta, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the 1 searchquery parameter in a getsearch action, and the 2 boardid parameter in a viewboard action...

6.8CVSS8.3AI score0.00916EPSS
Exploits1References4
Prion
Prion
added 2008/07/03 6:41 p.m.17 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in Gravity Board X GBX 2.0 Beta allows remote attackers to inject arbitrary web script or HTML via the subject parameter in a postnewsubmit aka create new thread action...

4.3CVSS6.1AI score0.01445EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2008/07/03 5:47 p.m.43 views

CVE-2008-2997

CVE-2008-2997 : XSS vulnerability in Gravity Board X (GBX) 2.0 Beta. In GBX’s index.php, the subject parameter in the postnewsubmit (create new thread) action can be exploited to inject arbitrary script/HTML. This remote vector could affect users who submit a thread, with the impact described as ...

4.3CVSS5.7AI score0.01445EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2008/07/03 5:47 p.m.22 views

CVE-2008-2996

Multiple SQL injection vulnerabilities in index.php in Gravity Board X GBX 2.0 Beta, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the 1 searchquery parameter in a getsearch action, and the 2 boardid parameter in a viewboard action...

8.3AI score0.00916EPSS
Exploits1References4
Cvelist
Cvelist
added 2008/07/03 5:47 p.m.19 views

CVE-2008-2997

Cross-site scripting XSS vulnerability in index.php in Gravity Board X GBX 2.0 Beta allows remote attackers to inject arbitrary web script or HTML via the subject parameter in a postnewsubmit aka create new thread action...

5.7AI score0.01445EPSS
Exploits1References4
CVE
CVE
added 2008/07/03 5:47 p.m.48 views

CVE-2008-2996

GBX 2.0 Beta (Gravity Board X) has multiple SQL injection vulnerabilities in index.php. Specifically, two parameters are exploitable: searchquery in getsearch and board_id in viewboard, and these issues occur when magic_quotes_gpc is disabled. The CVE-2008-2996 entry documents remote execution of...

6.8CVSS8.4AI score0.00916EPSS
Exploits1References4Affected Software1
seebug.org
seebug.org
added 2008/06/14 12:0 a.m.18 views

Gravity Board X 2.0 Beta (SQL/XSS) Multiple Remote Vulnerabilities

No description provided by source. ==================================================================== Gravity Board X 2.0 Beta SQL/XSS Multiple Remote Vulnerabilities ==================================================================== ,--^----------,--------,-----,-------^--, | |||||||||...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2008/06/13 12:0 a.m.29 views

gravity-sqlxss.txt

==================================================================== Gravity Board X 2.0 Beta SQL/XSS Multiple Remote Vulnerabilities ==================================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking...

7.4AI score
Exploits0
0day.today
0day.today
added 2008/06/12 12:0 a.m.16 views

Gravity Board X 2.0 Beta (SQL/XSS) Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications ================================================================== Gravity Board X 2.0 Beta SQL/XSS Multiple Remote Vulnerabilities ================================================================== ,--^----------,--------,-----,-------^--...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2008/06/12 12:0 a.m.12 views

Gravity Board X 2.0 Beta - SQL Injection Cross-Site Scripting

Gravity Board X 2.0 Beta - SQL Injection Cross-Site Scripting ==================================================================== Gravity Board X 2.0 Beta SQL/XSS Multiple Remote Vulnerabilities ====================================================================...

0.9AI score
Exploits0
Exploit DB
Exploit DB
added 2008/06/12 12:0 a.m.31 views

Gravity Board X 2.0 Beta - SQL Injection / Cross-Site Scripting

==================================================================== Gravity Board X 2.0 Beta SQL/XSS Multiple Remote Vulnerabilities ==================================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking...

7.4AI score
Exploits0
0day.today
0day.today
added 2006/02/17 12:0 a.m.56 views

Gravity Board X <= 1.1 (csscontent) Remote Code Execution Exploit

Exploit for unknown platform in category web applications ================================================================= Gravity Board X new or die; $res = $gr-get$path.'editcss.php?csscontent='; if$res-asstring = /unable to save changes/ print "Forum unable to save changes in css template...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2006/02/17 12:0 a.m.14 views

Gravity Board X 1.1 - csscontent Remote Code Execution

Gravity Board X 1.1 - csscontent Remote Code Execution !/usr/bin/perl Gravity Board X v1.1 possibly prior versions remote code execution exploit coded by 1dt.w0lf 14.08.2005 RST/GHC http://rst.void.ru http://ghc.ru use LWP::UserAgent; if@ARGVnew or die; $res =...

0.3AI score
Exploits0
seebug.org
seebug.org
added 2006/02/17 12:0 a.m.18 views

Gravity Board X &lt;= 1.1 (csscontent) Remote Code Execution Exploit

No description provided by source. !/usr/bin/perl Gravity Board X v1.1 possibly prior versions remote code execution exploit coded by 1dt.w0lf 14.08.2005 RST/GHC http://rst.void.ru http://ghc.ru use LWP::UserAgent; if@ARGV1 exit0; $path = $ARGV0; header; print "Creating shell... Please wait\n"; $...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2006/02/17 12:0 a.m.49 views

Gravity Board X 1.1 - &#039;csscontent&#039; Remote Code Execution

!/usr/bin/perl Gravity Board X v1.1 possibly prior versions remote code execution exploit coded by 1dt.w0lf 14.08.2005 RST/GHC http://rst.void.ru http://ghc.ru use LWP::UserAgent; if@ARGVnew or die; $res = $gr-get$path.'editcss.php?csscontent='; if$res-asstring = /unable to save changes/ print...

7AI score
Exploits0
CVE
CVE
added 2005/08/16 4:0 a.m.41 views

CVE-2005-2563

CVE-2005-2563 involves multiple XSS vulnerabilities in Gravity Board X (GBX) 1.1. The flaws allow remote attackers to inject arbitrary web script or HTML via (1) the board_id parameter to deletethread.php and (2) the template. The cited sources describe the affected software and the two attack ve...

4.3CVSS5.8AI score0.0125EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2005/08/16 4:0 a.m.16 views

CVE-2005-2562

SQL injection vulnerability in Gravity Board X GBX 1.1 allows remote attackers to execute arbitrary SQL commands and bypass authentication via the login field...

7.5CVSS8.6AI score0.02631EPSS
Exploits1References4
NVD
NVD
added 2005/08/16 4:0 a.m.14 views

CVE-2005-2563

Multiple cross-site scripting XSS vulnerabilities in Gravity Board X GBX 1.1 allow remote attackers to inject arbitrary web script or HTML via 1 the boardid parameter to deletethread.php or 2 the template...

4.3CVSS5.8AI score0.0125EPSS
Exploits1References3
Cvelist
Cvelist
added 2005/08/16 4:0 a.m.20 views

CVE-2005-2563

Multiple cross-site scripting XSS vulnerabilities in Gravity Board X GBX 1.1 allow remote attackers to inject arbitrary web script or HTML via 1 the boardid parameter to deletethread.php or 2 the template...

5.8AI score0.0125EPSS
Exploits1References3
NVD
NVD
added 2005/08/16 4:0 a.m.15 views

CVE-2005-2564

Direct static code injection vulnerability in editcss.php in Gravity Board X GBX 1.1 allows remote attackers to execute arbitrary PHP code, HTML, and script via the csscontent parameter, which is directly inserted into the gbxfinal.css file...

7.5CVSS7.8AI score0.05091EPSS
Exploits0References2
Rows per page
Query Builder