CVE-2005-3918

CVE-2005-3918 affects OvBB 0.08a with SQL injection vulnerabilities exposed via the threadid parameter to thread.php and the userid parameter to profile.php. The connected PT-2005-4658 entry provides concrete details: attackers can remotely execute arbitrary SQL commands due to these input vector...

OvBB SQL vulnerabilities.

OvBB SQL vulnerabilities. Vuln. dicovered by : r0t Date: 24 nov. 2005 Orginal advisory:http://pridels.blogspot.com/2005/11/ovbb-sql-vulnerabilities.html Vendor:http://www.ovbb.org/ affected version: V0.08a and prior Vuln. description: Input passed to the "threadid" parameter in "thread.php" isn't...

CVE-2005-3746

SQL injection vulnerability in thread.php in APBoard allows remote attackers to execute arbitrary SQL commands via the start parameter...

CVE-2005-3746

APBoard is affected by CVE-2005-3746 due to an SQL injection in thread.php via the start parameter. The vulnerability lets remote attackers execute arbitrary SQL commands, with impact described as partial confidentiality, integrity, and availability on affected data. The connected sources do not ...

CVE-2005-3264

Cross-site scripting XSS vulnerability in thread.php for Zeroblog 1.1f and 1.2a allows remote attackers to inject arbitrary web script or HTML via the threadID parameter...

CVE-2005-3264

Zeroblog is affected by a Cross-Site Scripting (XSS) vulnerability in thread.php via the threadID parameter, observed in Zeroblog 1.1f and 1.2a. The issue is caused by insufficient input sanitization on threadID, allowing arbitrary web script or HTML to be injected by a remote attacker. Connected...

CVE-2005-3264

Cross-site scripting XSS vulnerability in thread.php for Zeroblog 1.1f and 1.2a allows remote attackers to inject arbitrary web script or HTML via the threadID parameter...

woltlabXSS231.txt

SePro Bugtraq WBB - WoltLab Burning Board = 2.3.1 - XSS Vulnerability 22.04.05 Vendor: WoltLab URL: http://www.woltlab.de/ Version: = 2.3.1 Type: XSS Discovered by deluxe89 Description: -------------------------------- The WoltLab Burning Board is a high customisable forum software for every kind...

CVE-2005-1285

CVE-2005-1285 affects WoltLab Burning Board (thread.php) and earlier 2.3.1, where an XSS flaw can be exploited via the hilight parameter to inject script/HTML. The vulnerability is rooted in insufficient input sanitization for hilight in thread.php. CVSS info from NVD shows a medium severity (3.0...

[SePro Bugtraq] WBB - WoltLab Burning Board <= 2.3.1 - XSS Vulnerability (22.04.05)

SePro Bugtraq WBB - WoltLab Burning Board = 2.3.1 - XSS Vulnerability 22.04.05 Vendor: WoltLab URL: http://www.woltlab.de/ Version: = 2.3.1 Type: XSS Discovered by deluxe89 Description: -------------------------------- The WoltLab Burning Board is a high customisable forum software for every kind...