Lucene search
K

49 matches found

NVD
NVD
added 2006/09/08 8:4 p.m.13 views

CVE-2006-4633

index.php in SoftBB 0.1, and possibly earlier, allows remote attackers to obtain the installation path via a null or invalid page parameter...

5CVSS6.7AI score0.0347EPSS
Exploits0References7
NVD
NVD
added 2006/09/08 8:4 p.m.16 views

CVE-2006-4632

Multiple SQL injection vulnerabilities in SoftBB 0.1, and possibly earlier, allow remote attackers to execute arbitrary SQL commands via the 1 groupe parameter in addmembre.php and the 2 select parameter in moveto.php...

7.5CVSS8.6AI score0.03891EPSS
Exploits0References10
Cvelist
Cvelist
added 2006/09/08 8:0 p.m.18 views

CVE-2006-4632

Multiple SQL injection vulnerabilities in SoftBB 0.1, and possibly earlier, allow remote attackers to execute arbitrary SQL commands via the 1 groupe parameter in addmembre.php and the 2 select parameter in moveto.php...

8.6AI score0.03891EPSS
Exploits0References10
CVE
CVE
added 2006/09/08 8:0 p.m.39 views

CVE-2006-4631

The CVE refers to SoftBB 0.1 (and possibly earlier) with a vulnerability in admin/save_opt.php: Direct static code injection allows remote authenticated users to upload and execute arbitrary PHP code via the cache_forum parameter, which saves the code to info_options.php and makes it accessible v...

6.5CVSS7.8AI score0.02922EPSS
Exploits1References9Affected Software1
Cvelist
Cvelist
added 2006/09/08 8:0 p.m.16 views

CVE-2006-4633

index.php in SoftBB 0.1, and possibly earlier, allows remote attackers to obtain the installation path via a null or invalid page parameter...

6.7AI score0.0347EPSS
Exploits0References7
EUVD
EUVD
added 2006/09/08 8:0 p.m.3 views

EUVD-2006-4621

index.php in SoftBB 0.1, and possibly earlier, allows remote attackers to obtain the installation path via a null or invalid page parameter...

5CVSS6.6AI score0.0347EPSS
Exploits0References7
CVE
CVE
added 2006/09/08 8:0 p.m.38 views

CVE-2006-4632

CVE-2006-4632 covers multiple SQL injection vulnerabilities in SoftBB 0.1 (and possibly earlier). Affected components/functions include addmembre.php (parameter: groupe) and moveto.php (parameter: select). The underlying issue is improper handling of untrusted input, enabling remote attackers to ...

7.5CVSS8.9AI score0.03891EPSS
Exploits0References10Affected Software1
Cvelist
Cvelist
added 2006/09/08 8:0 p.m.15 views

CVE-2006-4631

Direct static code injection vulnerability in admin/saveopt.php in SoftBB 0.1, and possibly earlier, allows remote authenticated users to upload and execute arbitrary PHP code via the cacheforum parameter, which saves the code to infooptions.php, which is accessible via a direct request...

7.4AI score0.02922EPSS
Exploits1References9
CVE
CVE
added 2006/09/08 8:0 p.m.48 views

CVE-2006-4633

SoftBB 0.1 is affected; index.php can disclose installation path via a null/invalid page[] parameter. The root cause is improper handling of the page[] input leading to information disclosure. Impact is partial confidentiality leakage (installation path). No remediation details are provided in th...

5CVSS7AI score0.0347EPSS
Exploits0References7Affected Software1
Packet Storm
Packet Storm
added 2006/09/07 12:0 a.m.37 views

softbbxss.txt

SoftBB v0.1 alert'hacking%20xss' ; Greetz : M.I.D.TDrackanZ, Mr.IlysS & All Moroccan & Arab Hackers ;...

7.4AI score
Exploits0
NVD
NVD
added 2006/09/06 10:4 p.m.14 views

CVE-2006-4593

Cross-site scripting XSS vulnerability in index.php in SoftBB 0.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the page parameter...

6.8CVSS5.7AI score0.01867EPSS
Exploits2References5
Cvelist
Cvelist
added 2006/09/06 10:0 p.m.20 views

CVE-2006-4593

Cross-site scripting XSS vulnerability in index.php in SoftBB 0.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the page parameter...

5.7AI score0.01867EPSS
Exploits2References5
CVE
CVE
added 2006/09/06 10:0 p.m.46 views

CVE-2006-4593

CVE-2006-4593 describes a Cross-site scripting vulnerability in SoftBB 0.1 and earlier. The vulnerability occurs in index.php and is exploitable via the page parameter, allowing injection of arbitrary script/HTML. Connected sources corroborate SoftBB XSS details (versions

6.8CVSS5.7AI score0.01867EPSS
Exploits2References5Affected Software1
exploitpack
exploitpack
added 2006/09/05 12:0 a.m.8 views

SoftBB 0.1 - Page Cross-Site Scripting

SoftBB 0.1 - Page Cross-Site Scripting source: https://www.securityfocus.com/bid/19847/info SoftBB is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in...

6.8AI score
Exploits0
securityvulns
securityvulns
added 2006/09/05 12:0 a.m.48 views

SoftBB v0.1 < = Cross-Site Scripting

SoftBB v0.1 = Cross-Site Scripting - XSS Exploit ; Discovred By : ThELeOMor0Ccan Islam DefenDers Team ; Software : SoftBB ; Version : 0.1 ; Site Of Software : Www.Softbb.Be ; Exploit : http://Www.Site.Com/Script/index.php?page=scriptalert'hacking20xss'/script ; Greetz : M.I.D.TDrackanZ, Mr.IlysS ...

1.2AI score
Exploits0
Exploit DB
Exploit DB
added 2006/09/05 12:0 a.m.15 views

SoftBB 0.1 - 'Page' Cross-Site Scripting

source: https://www.securityfocus.com/bid/19847/info SoftBB is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user in...

7.4AI score
Exploits0
0day.today
0day.today
added 2006/09/04 12:0 a.m.51 views

SoftBB 0.1 (cmd) Remote Command Execution Exploit

Exploit for unknown platform in category web applications ================================================= SoftBB 0.1 cmd Remote Command Execution Exploit ================================================= !/usr/bin/perl Affected.scr..: SoftBB 0.1 Poc.ID........: 11060904 Type..........: PHP code...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2006/09/04 12:0 a.m.16 views

SoftBB 0.1 - cmd Remote Command Execution

SoftBB 0.1 - cmd Remote Command Execution !/usr/bin/perl Affected.scr..: SoftBB 0.1 Poc.ID........: 11060904 Type..........: PHP code execution, SQL Injection, Full Path Disclosure Risk.level....: High Vendor.Status.: Unpatched Src.download..: softbb.be Poc.link......:...

7.7AI score
Exploits0
seebug.org
seebug.org
added 2006/09/04 12:0 a.m.20 views

SoftBB 0.1 (cmd) Remote Command Execution Exploit

No description provided by source. !/usr/bin/perl Affected.scr..: SoftBB 0.1 Poc.ID........: 11060904 Type..........: PHP code execution, SQL Injection, Full Path Disclosure Risk.level....: High Vendor.Status.: Unpatched Src.download..: softbb.be Poc.link......: acid-root.new.fr/poc/11060904.txt...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2006/09/04 12:0 a.m.35 views

SoftBB 0.1 - 'cmd' Remote Command Execution

!/usr/bin/perl Affected.scr..: SoftBB 0.1 Poc.ID........: 11060904 Type..........: PHP code execution, SQL Injection, Full Path Disclosure Risk.level....: High Vendor.Status.: Unpatched Src.download..: softbb.be Poc.link......: acid-root.new.fr/poc/11060904.txt Advisory.link.:...

7.4AI score
Exploits0
Rows per page
Query Builder