13 matches found
vBulletin 代码注入漏洞
vBulletin is an open-source web forum software based on PHP and MySQL developed by vBulletin Inc. Version vBulletin 6.x has a code injection vulnerability, which stems from improper operation of the Login component and may lead to cross-site scripting attacks...
phpBB 路径遍历漏洞
phpBB is an open-source web forum software based on the PHP language. This software supports multiple languages, various databases, and custom layout designs. phpBB has a path traversal vulnerability, which stems from an arbitrary file upload vulnerability. This vulnerability could allow verified...
my little forum 代码问题漏洞
My Little Forum is an open-source online forum system based on PHP and MySQL. Versions prior to 20260208.1 had code vulnerabilities; these vulnerabilities stemmed from URL validation not filtering the phar protocol, which could lead to arbitrary file deletion...
MyBB 路径遍历漏洞
MyBB MyBulletinBoard is a free and Web-based forum software developed by MyBB team using PHP and MySQL. The software is easy to use, supports multiple languages, and is extensible. A path traversal vulnerability exists in versions of MyBB prior to 1.8.39, which stems from an upgrade component tha...
MyBB 注入漏洞
MyBB MyBulletinBoard is a free and web-based forum software developed by MYBB team using PHP and MySQL. The software is easy to use, supports multiple languages, and is extensible.MyBB is vulnerable to a command injection vulnerability that originates from the additional parameter Mail Settings ?...
MyBB UserCP Cross-Site Scripting Vulnerability
MyBB MyBulletinBoard is a free and Web-based forum software developed by MyBB team using PHP and MySQL. The software is characterized by its simplicity, multi-language support and extensibility. A cross-site scripting vulnerability exists in MyBB UserCP. This vulnerability allows attackers to...
Powie PForum 1.1x Username Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4165/info Powie PForum is web forum software, written in PHP and back-ended by MySQL. It will run on most Unix and Linux variants, as well as Microsoft Windows operating systems. PForum is prone to cross-site scripting...
OpenBB 1.0 .0 RC3 BBCode Cross Agent HTML Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4819/info OpenBB is web forum software written in PHP. It will run on most Linux and Unix variants, in addition to Microsoft Windows operating systems. OpenBB is reportedly vulnerable to HTML injection attacks. The...
Snitz Forums 2000 - register.asp SQL Injection
Snitz Forums 2000 - register.asp SQL Injection source: https://www.securityfocus.com/bid/7549/info Snitz Forums 2000 is ASP-based web forum software. It runs on Microsoft Windows operating systems. Snitz is back-ended by a database and supports Microsoft Access 97/2000, SQL Server 6.5/7.0/2000 an...
Ultimate PHP Board 1.01.1 - Image Tag Script Injection
Ultimate PHP Board 1.01.1 - Image Tag Script Injection source: https://www.securityfocus.com/bid/4603/info Ultimate PHP Board UPB is web forum software. It will run on most Unix and Linux variants, as well as Microsoft Windows operating systems. Ultimate PHP Board does not filter script code from...
IcrediBB 1.1 - Script Injection
IcrediBB 1.1 - Script Injection source: https://www.securityfocus.com/bid/4548/info IcrediBB is freely available web forum software. It is written in PHP and will run on most Unix and Linux variants, as well as Microsoft Windows operating systems. IcrediBB does not adequately filter script code...
Burning Board 1.1.1 - URL Manipulation
Burning Board 1.1.1 - URL Manipulation source: https://www.securityfocus.com/bid/4512/info Burning Board is web forum software. It is written in PHP, back-ended by MySQL, and will run on most Unix and Linux variants as well as Microsoft Windows. An attacker may allegedly create a malicious link...
Powie PForum 1.1x - Username Cross-Site Scripting
Powie PForum 1.1x - Username Cross-Site Scripting source: https://www.securityfocus.com/bid/4165/info Powie PForum is web forum software, written in PHP and back-ended by MySQL. It will run on most Unix and Linux variants, as well as Microsoft Windows operating systems. PForum is prone to...