29 matches found
CVE-2006-3220
CVE-2006-3220 describes a SQL injection in the file studienplatztausch.php of Woltlab Burning Board (WBB) 2.2.1. The vulnerability allows remote attackers to craft input to the sid parameter and execute arbitrary SQL commands on the backend database. The available sources confirm the affected pro...
wbb<<--v 2.2.1 "studienplatztausch.php" SQL injection
============================================== Discovered By: CrAzY CrAcKeR Site:www.alshmokh.com I want to thank my friend:- nono225-mHOn-rageh-Lover Hacker-Sw33t h4ck3r Breeeeh-BoNym-Rootshill-LiNuXrOOt-SauDiVirUs ============================================== Example:-...
CVE-2006-2792
The CVE-2006-2792 entry concerns Woltlab Burning Board (WBB) 2.3.4. A SQL injection flaw exists in misc.php that lets remote attackers manipulate the database by supplying a crafted sid parameter, enabling arbitrary SQL execution. This is documented in the NVD entry for CVE-2006-2792 and reflecte...
WBB<--v2.3.4"misc.php" SQL injection Vulnerability
=================================== Discovery By: CrAzY CrAcKeR Site: www.alshmokh.com I want to thank my friend:- nono225-mHOn-rageh-LoverHacker Breeeeh-LiNuXrOOt-BoNym-rootshill =================================== Example:- /misc.php?action=faq?sid=SQL injection...
Xss in Wbb 2.3.4
hi again friends i discovered a xss in wbb again ; in wbb/acp/lib/classdbmysql.php in the 123.line $errormsg .= "bScript:/b ".getenv"REQUESTURI"."nbr"; hmm what can we do with that? if there is an sql db error you may do...
wbb234XSS.txt
there is an xss in wbb 2.3.4 example: http://example.com/wbb/acp/misc.php?sid=yoursessionid&action=workingtop&taskname=Backup%20Database&percent=alerdocument.cookie thnx...
CVE-2006-1034
CVE-2006-1034 describes multiple cross-site scripting vulnerabilities in Woltlab Burning Board (wBB). The affected components are (1) galerie_index.php with the username parameter and (2) galerie_onfly.php, with the note that the second vector might not be XSS. Attacks can allow remote attackers ...
Wbb 2.3. xss
there is an xss in wbb 2.3.4 example: http://example.com/wbb/acp/misc.php?sid=yoursessionid&action=workingtop&taskname=Backup20Database&percent=scriptalerdocument.cookie/script thnx...
[SePro Bugtraq] WBB Portal - JGS-Portal <= 3.0.2 - Multiple Vulnerabilities (09.05.05)
SePro Bugtraq WBB Portal - JGS-Portal = 3.0.2 - Multiple Vulnerabilities 09.05.05 Vendor: JGS-XA URL: http://www.jgs-xa.de/ Version: = 3.0.2 Type: SQL-Injections, XSS and Full Path Disclosures Discovered by deluxe89 and the Security-Project Team Description: ------------------------- The JGS-Port...