CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Exploit Title: iScripts SonicBB 1.0 - Reflected Cross-Site Scripting Date: 02/04/2018 Exploit Author: ManhNho Vendor Homepage: https://www.iscripts.com Demo Page: https://www.demo.iscripts.com/sonicbb/demo/ Version: 1.0 Tested on: Windows 10 Category: Webapps CVE: CVE-2018-9235 1. Description...

6.4AI score0.01265EPSS

Exploits5

0day.today•added 2018/04/10 12:0 a.m.•19 views

iScripts SonicBB 1.0 - Reflected Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: iScripts SonicBB 1.0 - Reflected Cross-Site Scripting Exploit Author: ManhNho Vendor Homepage: https://www.iscripts.com Demo Page: https://www.demo.iscripts.com/sonicbb/demo/ Version: 1.0 Tested on: Windows 10 Category: Webapps...

0.2AI score0.01265EPSS

Exploits5

exploitpack•added 2018/04/09 12:0 a.m.•14 views

iScripts SonicBB 1.0 - Reflected Cross-Site Scripting (PoC)

iScripts SonicBB 1.0 - Reflected Cross-Site Scripting PoC Exploit Title: iScripts SonicBB 1.0 - Reflected Cross-Site Scripting Date: 02/04/2018 Exploit Author: ManhNho Vendor Homepage: https://www.iscripts.com Demo Page: https://www.demo.iscripts.com/sonicbb/demo/ Version: 1.0 Tested on: Windows ...

4.3CVSS0.01265EPSS

Exploits5

Exploit DB•added 2018/04/09 12:0 a.m.•27 views

iScripts SonicBB 1.0 - Reflected Cross-Site Scripting (PoC)

6.1CVSS6.3AI score0.01265EPSS

Exploits5

CNVD•added 2018/04/09 12:0 a.m.•1 views

Armia Systems iScripts SonicBB Cross-Site Scripting Vulnerability

Armia Systems iScripts SonicBB is a PHP and MySQL based community forum building software package from Armia Systems, USA. The product includes features such as member registration, on-site search and custom configuration. A cross-site scripting vulnerability exists in Armia Systems iScripts...

6.1CVSS6.2AI score0.01265EPSS

Exploits5References1

OSV•added 2018/04/04 7:29 a.m.•1 views

CVE-2018-9235

iScripts SonicBB 1.0 has Reflected Cross-Site Scripting via the query parameter to search.php...

6.1CVSS5.8AI score0.01265EPSS

Exploits5References2

Prion•added 2018/04/04 7:29 a.m.•10 views

Cross site scripting

iScripts SonicBB 1.0 has Reflected Cross-Site Scripting via the query parameter to search.php...

4.3CVSS6AI score0.01265EPSS

Exploits5References2Affected Software1

NVD•added 2018/04/04 7:29 a.m.•11 views

CVE-2018-9235

iScripts SonicBB 1.0 has Reflected Cross-Site Scripting via the query parameter to search.php...

6.1CVSS6.1AI score0.01265EPSS

Exploits5References2

Cvelist•added 2018/04/04 7:0 a.m.•9 views

CVE-2018-9235

iScripts SonicBB 1.0 has Reflected Cross-Site Scripting via the query parameter to search.php...

6AI score0.01265EPSS

Exploits5References2

CVE•added 2018/04/04 7:0 a.m.•48 views

CVE-2018-9235

CVE-2018-9235 affects iScripts SonicBB 1.0. The vulnerability is a Reflected Cross-Site Scripting via the query parameter to search.php, enabling injection of arbitrary script/HTML. Public materials describe a PoC and an exploit for the vulnerable URL (search.php?query=...). The CNVD entry notes ...

6.1CVSS6AI score0.01265EPSS

Exploits5References2Affected Software1

seebug.org•added 2014/07/01 12:0 a.m.•15 views

SonicBB 1.0 - Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/23964/info SonicBB is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromi...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•7 views

SonicBB 1.0 Search.PHP Cross-Site Scripting Vulnerability

No description provided by source...

7.1AI score

Exploits0

Packet Storm•added 2008/12/31 12:0 a.m.•26 views

SonicBB 1.0 Multiple Cross Site Scripting Issues

+----------------------------------------------------------------------+ | | | SonicBB = 1.0 Multiple XSS Vulnerabilities | | Revisited by Xylitol | | http://xylilabs.free.fr | | | +----------------------------------------------------------------------+ AUTHOR : Xylitol DATE : 23 Dec 2008 WEBSiTE...

Exploits0

Packet Storm•added 2007/05/15 12:0 a.m.•53 views

sbb-sql.txt

netVigilance Security Advisory 19 SonicBB version 1.0 Multiple SQL Injection Vulnerabilities Description: SonicBB is a user-friendly and fully customizable bulletin board package. SonicBB is compatible with any web server/operating system combo with PHP 4.x or higher installed.SonicBB is the idea...

6.8CVSS6.7AI score0.01379EPSS

Exploits2

Packet Storm•added 2007/05/15 12:0 a.m.•33 views

sbb-xss.txt

netVigilance Security Advisory 20 SonicBB version 1.0 XSS Attack Vulnerabilities Description: SonicBB is a user-friendly and fully customizable bulletin board package. SonicBB is compatible with any web server/operating system combo with PHP 4.x or higher installed.SonicBB is the ideal community...

2.6CVSS6.7AI score0.01111EPSS

Exploits1

Prion•added 2007/05/14 9:19 p.m.•20 views

Sql injection

Multiple SQL injection vulnerabilities in SonicBB 1.0 allow remote attackers to execute arbitrary SQL commands via the 1 part and 2 by parameters to a search.php, or the 2 id parameter to b viewforum.php...

6.8CVSS9.2AI score0.01379EPSS

Exploits2References8Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by