CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

82 matches found

Packet Storm•added 2021/02/24 12:0 a.m.•139 views

LayerBB 1.1.4 SQL Injection

Exploit Title: LayerBB 1.1.4 - 'searchquery' SQL Injection Date: 2021-02-19 Exploit Author: Görkem Haşin Version: 1.1.4 Tested on: Linux/Windows POST /search.php HTTP/1.1 Host: Target Payload: searchquery=Lffd' AND 8460=SELECT CASE WHEN 8460=8460 THEN 8460 ELSE SELECT 1560 UNION SELECT 2122 END--...

0.7AI score

Exploits0

0day.today•added 2021/02/24 12:0 a.m.•16 views

LayerBB 1.1.4 - (search_query) SQL Injection Vulnerability

Exploit Title: LayerBB 1.1.4 - 'searchquery' SQL Injection Exploit Author: Görkem Haşin Version: 1.1.4 Tested on: Linux/Windows POST /search.php HTTP/1.1 Host: Target Payload: searchquery=Lffd' AND 8460=SELECT CASE WHEN 8460=8460 THEN 8460 ELSE SELECT 1560 UNION SELECT 2122 END--...

7.1AI score

Exploits0

Exploit DB•added 2021/02/24 12:0 a.m.•216 views

LayerBB 1.1.4 - 'search_query' SQL Injection

7.4AI score

Exploits0

0day.today•added 2019/09/23 12:0 a.m.•113 views

LayerBB < 1.1.4 - Cross-Site Request Forgery Vulnerability

Exploit for php platform in category web applications Exploit Title: LayerBB 1.1.3 - Multiple CSRF Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://forum.layerbb.com/downloads.php?view=file&id=30 Version: 1.1.3 Tested on: Ubuntu 18.04 CVE: CVE-2019-16531 1. Description:...

6.8CVSS8.7AI score0.02549EPSS

Exploits5

OSV•added 2019/09/20 2:16 a.m.•17 views

CVE-2019-16531

LayerBB before 1.1.4 has multiple CSRF issues, as demonstrated by changing the System Settings via admin/general.php...

8.8CVSS6.9AI score

Exploits0References4

NVD•added 2019/09/20 2:16 a.m.•24 views

CVE-2019-16531

LayerBB before 1.1.4 has multiple CSRF issues, as demonstrated by changing the System Settings via admin/general.php...

8.8CVSS8.7AI score0.02549EPSS

Exploits5References4

Prion•added 2019/09/20 2:16 a.m.•12 views

Cross site request forgery (csrf)

LayerBB before 1.1.4 has multiple CSRF issues, as demonstrated by changing the System Settings via admin/general.php...

6.8CVSS8.7AI score0.02549EPSS

Exploits5References4Affected Software1

Cvelist•added 2019/09/20 12:47 a.m.•33 views

CVE-2019-16531

LayerBB before 1.1.4 has multiple CSRF issues, as demonstrated by changing the System Settings via admin/general.php...

8.8AI score0.02549EPSS

Exploits5References4

CVE•added 2019/09/20 12:47 a.m.•163 views

CVE-2019-16531

CVE-2019-16531 affects LayerBB prior to 1.1.4 and covers multiple CSRF vulnerabilities demonstrated via admin/general.php (e.g., System Settings changes). Public references and Red Hat/EUVD records corroborate CSRF issues across LayerBB 1.1.3, with exploitation details visible in exploit- and pac...

8.8CVSS8.6AI score0.02549EPSS

Exploits5References4Affected Software1

exploitpack•added 2019/09/20 12:0 a.m.•71 views

LayerBB 1.1.4 - Cross-Site Request Forgery

LayerBB 1.1.4 - Cross-Site Request Forgery Exploit Title: LayerBB 1.1.3 - Multiple CSRF Date: 4/7/2019 Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://forum.layerbb.com/downloads.php?view=file&id=30 Version: 1.1.3 Tested on: Ubuntu 18.04 CVE: CVE-2019-16531 1...

6.8CVSS0.7AI score0.02549EPSS

Exploits5

Packet Storm•added 2019/09/20 12:0 a.m.•424 views

LayerBB 1.1.3 Cross Site Request Forgery

Exploit Title: LayerBB 1.1.3 - Multiple CSRF Date: 4/7/2019 Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://forum.layerbb.com/downloads.php?view=file&id=30 Version: 1.1.3 Tested on: Ubuntu 18.04 CVE: CVE-2019-16531 1. Description: LayerBB is a free open-source forum...

0.6AI score0.02549EPSS

Exploits5

Exploit DB•added 2019/09/20 12:0 a.m.•591 views

LayerBB < 1.1.4 - Cross-Site Request Forgery

8.8CVSS9AI score0.02549EPSS

Exploits5

CNVD•added 2019/07/24 12:0 a.m.•3 views

LayerBB Code Issues Vulnerabilities

LayerBB is a small set of forum software. A code issue vulnerability exists in LayerBB version 1.1.3, which stems from the program not restricting the customlogo file name suffix. An attacker can exploit this vulnerability to upload arbitrary files...

9.8CVSS7.3AI score0.01753EPSS

Exploits1References1

CNVD•added 2019/07/24 12:0 a.m.•4 views

LayerBB cross-site scripting vulnerability (CNVD-2019-24206)

LayerBB is a small set of forum software. A cross-site scripting vulnerability exists in LayerBB version 1.1.3. The vulnerability stems from a lack of proper validation of client-side data by the web application. An attacker can exploit this vulnerability to execute client-side code...

6.1CVSS6.4AI score0.00865EPSS

Exploits1References1

CNVD•added 2019/07/24 12:0 a.m.•5 views

LayerBB Cross-Site Request Forgery Vulnerability

LayerBB is a small set of forum software. A cross-site request forgery vulnerability exists in LayerBB version 1.1.3. The vulnerability stems from a WEB application that does not adequately validate that a request is coming from a trusted user. An attacker could use this vulnerability to send...

8.8CVSS6.9AI score0.00613EPSS

Exploits0References1

OSV•added 2019/07/19 7:15 a.m.•15 views

CVE-2019-13972

LayerBB 1.1.3 allows XSS via the application/commands/new.php pmtitle variable, a related issue to CVE-2019-17997...

6.1CVSS5.6AI score

Exploits0References1

NVD•added 2019/07/19 7:15 a.m.•11 views

CVE-2019-13972

LayerBB 1.1.3 allows XSS via the application/commands/new.php pmtitle variable, a related issue to CVE-2019-17997...

6.1CVSS6.1AI score0.00865EPSS

Exploits1References1