Lucene search
K

5 matches found

NVD
NVD
added 2006/01/09 6:3 p.m.9 views

CVE-2006-0139

The send-private-message functionality send-private-message.asp in PD9 Software MegaBBS 2.1 allows remote attackers to read private messages of other users via a modified replyid parameter...

5CVSS6.5AI score0.0178EPSS
Exploits1References7
Prion
Prion
added 2006/01/09 6:3 p.m.11 views

Code injection

The send-private-message functionality send-private-message.asp in PD9 Software MegaBBS 2.1 allows remote attackers to read private messages of other users via a modified replyid parameter...

5CVSS7AI score0.0178EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2006/01/09 6:0 p.m.21 views

CVE-2004-2653

Unspecified vulnerability in PD9 Software MegaBBS 2.0 and 2.1 allows attackers to gain privileges via unknown vectors involving 1 admin/userlevelmembers-edit.asp and 2 admin/edit-groups.asp...

6.7AI score0.01116EPSS
Exploits0References1
CVE
CVE
added 2006/01/09 6:0 p.m.40 views

CVE-2006-0139

The CVE-2006-0139 vulnerability affects PD9 Software MegaBBS 2.1 , specifically the send-private-message.asp feature. A remote attacker can read other users’ private messages by supplying a modified replyid parameter, indicating improper input handling/validation for that field. The available doc...

5CVSS6.5AI score0.0178EPSS
Exploits1References7Affected Software1
Exploit DB
Exploit DB
added 2004/09/27 12:0 a.m.20 views

PD9 Software MegaBBS 2.0/2.1 - 'ladder-log.asp' Multiple SQL Injections

source: https://www.securityfocus.com/bid/11253/info MegaBBS is reported prone to multiple vulnerabilities. These issues exist due to insufficient sanitization of user-supplied data and may allow an attacker to carry out HTTP response splitting and SQL injection attacks. MegaBBS versions 2.0 and...

7.4AI score
Exploits0
Rows per page
Query Builder