UBBCentral UBB.threads 6.0 Editpost.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/12784/info It is reported that UBB.threads is prone to an SQL injection vulnerability. The SQL injection vulnerability is reported to affect the 'editpost.php' script. UBB.threads 6.0 is reported prone to this issue. It i...

UBBCentral UBB.threads 6.2.3/6.5 login.php Cat Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/11900/info It is reported that UBB.threads is affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly sanitize user-supplied URI input prior to including...

UBB.threads 6.2.x - 6.3x - One Char Bruteforce Exploit

No description provided by source. !/usr/bin/perl use LWP::UserAgent; UBB.Threads 6.2. - 6.3. exploit with one char brute technique by 1dt.w0lf // r57 $path = $ARGV0; $username = $ARGV1; $snum = 1; $n=0; $|++; if @ARGV 2 print Please wait...\r\n; print ; while1 &found0,122; 0 if $char==0 print...

UBBCentral UBB.threads 5.5.1/6.x download.php Number Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/14052/info UBB.Threads is prone to multiple SQL injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker...

UBBCentral UBB.threads 5.5.1/6.x notifymod.php Number Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/14052/info UBB.Threads is prone to multiple SQL injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker...

UBBCentral UBB.threads 5.5.1/6.x grabnext.php posted Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/14052/info UBB.Threads is prone to multiple SQL injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker...

UBBCentral UBB.threads 5.5.1/6.x calendar.php Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/14052/info UBB.Threads is prone to multiple SQL injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker...

UBB.threads <= 6.5.1.1 (doeditconfig.php) Code Execution Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? // UBB.threads Multiple input validation error // Discovered By : HACKERS PAL // Copy rights : HACKERS PAL // Website : http://www.soqor.net // Email Address : [email protected] // Tested on Version 6 6.5.1.1 and other...

UBBCentral UBB.threads 3.4/3.5 Dosearch.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11502/info It is reported that UBBCentral UBB.threads is prone to an SQL injection vulnerability. This issue is due to a failure of the application to properly validate user supplied URI input. Because of this, a maliciou...

UBB.Threads <= 6.1.1 UBBThreads.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23369/info UBB.threads is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise t...

UBB.threads 7.3.1 'Forum[]' Array SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/31074/info UBB.threads is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise t...

UBBCentral 6.0 UBB.threads Printthread.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13253/info It is reported that UBB.threads is prone to an SQL injection vulnerability. The SQL injection vulnerability is reported to affect the 'printthread.php' script. UBB.threads 6.0 is reported prone to this issue. I...

UBBCentral UBB.threads 5.5.1/6.x addfav.php main Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/14052/info UBB.Threads is prone to multiple SQL injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker...

UBBCentral UBB.threads 6.2.3/6.5 calendar.php Cat Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/11900/info It is reported that UBB.threads is affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly sanitize user-supplied URI input prior to including...

UBBCentral UBB.threads 5.5.1/6.x modifypost.php Number Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/14052/info UBB.Threads is prone to multiple SQL injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker...

UBBCentral UBB.threads 6.2.3/6.5 showflat.php Cat Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/11900/info It is reported that UBB.threads is affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly sanitize user-supplied URI input prior to including...

CVE-2012-5104

Cross-site scripting XSS vulnerability in forums/ubbthreads.php in UBB.threads 7.5.6 and earlier allows remote attackers to inject arbitrary web script or HTML via the Loginname parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in forums/ubbthreads.php in UBB.threads 7.5.6 and earlier allows remote attackers to inject arbitrary web script or HTML via the Loginname parameter...

CVE-2012-5104

Cross-site scripting XSS vulnerability in forums/ubbthreads.php in UBB.threads 7.5.6 and earlier allows remote attackers to inject arbitrary web script or HTML via the Loginname parameter...

CVE-2012-5104

CVE-2012-5104 affects the web forum component UBB.threads (7.5.6 and earlier) . The vulnerability is a cross-site scripting (XSS) flaw that allows remote attackers to inject arbitrary web script or HTML via the Loginname parameter. The connected records confirm the affected product/version and th...