Lucene search
+L

177 matches found

Check Point Advisories
Check Point Advisories
added 2014/02/03 12:0 a.m.19 views

OABOARD Web Forum forum.php inc Parameter PHP Code Execution - Ver2 (CVE-2006-0076)

A code execution vulnerability has been reported in OABoard. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5AI score0.03076EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2014/02/03 12:0 a.m.9 views

VEGO Web Forum index.php theme_id Parameter SQL Injection - Ver2 (CVE-2006-0065)

An SQL injection vulnerability has been reported in VEGO Web Forum. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...

4.9AI score0.01414EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2014/01/07 12:0 a.m.17 views

VEGO Web Forum login.php username Parameter SQL Injection - Ver2 (CVE-2006-0067)

An SQL injection vulnerability has been reported in VEGO Links Builder. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...

7.5CVSS8.1AI score0.01243EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2014/01/07 12:0 a.m.17 views

OABOARD Web Forum forum.php inc Parameter PHP Code Execution - Ver2 (CVE-2006-0076)

A code execution vulnerability has been reported in OABoard. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS7.5AI score0.03076EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2014/01/07 12:0 a.m.12 views

VEGO Web Forum index.php theme_id Parameter SQL Injection - Ver2 (CVE-2006-0065)

An SQL injection vulnerability has been reported in VEGO Web Forum. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...

7.5CVSS8.1AI score0.01414EPSS
Exploits0
Debian
Debian
added 2013/09/07 8:49 a.m.11 views

[SECURITY] [DSA 2752-1] phpbb3 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2752-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst September 07, 2013 http://www.debian.org/security/faq -...

6.6AI score
Exploits0
OpenVAS
OpenVAS
added 2013/09/07 12:0 a.m.24 views

Debian Security Advisory DSA 2752-1 (phpbb3 - permissions too wide)

Andreas Beckmann discovered that phpBB, a web forum, as installed in Debian, sets incorrect permissions for cached files, allowing a malicious local user to overwrite them. OpenVAS Vulnerability Test $Id: deb2752.nasl 6611 2017-07-07 12:07:20Z cfischer $ Auto-generated from advisory DSA 2752-1...

2.1CVSS6.5AI score0.0038EPSS
Exploits0References1
OSV
OSV
added 2013/09/07 12:0 a.m.16 views

DSA-2752-1 phpbb3 - too wide permissions

Bulletin has no description...

2.1CVSS6.8AI score0.0038EPSS
Exploits0
The Hacker News
The Hacker News
added 2013/05/17 5:50 p.m.7 views

Latest Al-Qaeda Magazine content hacked by Western intelligence agencies

New issue of English-language al-Qaeda magazine posted on the terror group's website earlier this week linked to the Boston terrorist attacks has possibly been hacked by Western intelligence agencies and its content beyond its cover page was scrambled. The magazine, produced by al Qaeda's Yemeni...

7AI score
Exploits0
seebug.org
seebug.org
added 2012/06/27 12:0 a.m.17 views

MyBB 1.6.8 'announcements.php'远程SQL注入漏洞

BUGTRAQ ID: 54130 MyBB是一款流行的Web论坛程序。 MyBB 1.6.8没有正确过滤用户提供的输入即用在SQL查询中,导致攻击者利用此漏洞控制应用、访问或修改数据或利用下层数据库中的其他漏洞。 0 MyBB 1.6.8 厂商补丁: MyBB ---- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.mybboard.com/...

6.9AI score
Exploits0
seebug.org
seebug.org
added 2012/02/13 12:0 a.m.16 views

MyBB 1.6.6之前版本多个安全漏洞

BUGTRAQ ID: 51962 MyBB是一款流行的Web论坛程序。 MyBB在实现上存在多个安全漏洞,攻击者可利用这些漏洞执行脚本代码、窃取Cookie身份验证凭证、泄露或修改敏感信息或执行非法操作。 0 MyBB 1.x 厂商补丁: MyBB ---- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.mybboard.com/...

6.9AI score
Exploits0
seebug.org
seebug.org
added 2011/11/28 12:0 a.m.22 views

MyBB 1.x 多个安全漏洞

BUGTRAQ ID: 50816 MyBB是一款流行的Web论坛程序。 MyBB在实现上存在跨站脚本执行、跨站请求伪造和其他多个安全漏洞,攻击者可利用这些漏洞在受影响站点用户浏览器中执行任意脚本,窃取cookie验证凭证,泄露或修改敏感信息或这些非法操作。 1)好友列表中的未解析头像中存在错误; 2)通过用户名传递的输入在返回给用户之前没有正确过滤,导致在受影响站点的用户浏览器中执行任意HTML和脚本代码; 3)应用允许用户通过HTTP请求执行某些操作,但不验证这些请求。可在用户浏览特制的网页时更改语言设置。 MyBB 1.x 厂商补丁: MyBB ----...

6.9AI score
Exploits0
NVD
NVD
added 2011/10/24 6:55 p.m.15 views

CVE-2011-4172

Multiple cross-site scripting XSS vulnerabilities in KENT-WEB WEB FORUM before 5.1 allow remote attackers to inject arbitrary web script or HTML via 1 an e-mail address field or 2 a cookie, a related issue to CVE-2011-3383, CVE-2011-3983, and CVE-2011-3984...

4.3CVSS5.7AI score0.00855EPSS
Exploits0References1
Prion
Prion
added 2011/10/24 6:55 p.m.15 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in KENT-WEB WEB FORUM before 5.1 allow remote attackers to inject arbitrary web script or HTML via 1 an e-mail address field or 2 a cookie, a related issue to CVE-2011-3383, CVE-2011-3983, and CVE-2011-3984...

4.3CVSS5.8AI score0.01656EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2011/10/24 6:0 p.m.47 views

CVE-2011-4172

KENT-WEB WEB FORUM (before 5.1) is affected by multiple XSS vulnerabilities that allow remote attackers to inject arbitrary scripts via the email address field or cookies. Root cause: improper sanitization/execution context in the vulnerable web output. Impact: potential credential theft, session...

4.3CVSS5.8AI score0.00855EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2011/10/24 6:0 p.m.32 views

CVE-2011-4172

Multiple cross-site scripting XSS vulnerabilities in KENT-WEB WEB FORUM before 5.1 allow remote attackers to inject arbitrary web script or HTML via 1 an e-mail address field or 2 a cookie, a related issue to CVE-2011-3383, CVE-2011-3983, and CVE-2011-3984...

5.7AI score0.00855EPSS
Exploits0References1
NVD
NVD
added 2011/10/24 5:55 p.m.19 views

CVE-2011-3983

Cross-site scripting XSS vulnerability in KENT-WEB WEB FORUM 5.1 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors related to cookies...

4.3CVSS5.5AI score0.01656EPSS
Exploits0References3
NVD
NVD
added 2011/10/24 5:55 p.m.19 views

CVE-2011-3984

Cross-site scripting XSS vulnerability in KENT-WEB WEB FORUM 5.1 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors related to "web form entries."...

4.3CVSS5.5AI score0.01403EPSS
Exploits0References4
NVD
NVD
added 2011/10/24 5:55 p.m.20 views

CVE-2011-3383

Cross-site scripting XSS vulnerability in KENT-WEB WEB FORUM 5.1 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors related to "the web page to be output."...

4.3CVSS5.5AI score0.01029EPSS
Exploits0References2
Prion
Prion
added 2011/10/24 5:55 p.m.16 views

Cross site scripting

Cross-site scripting XSS vulnerability in KENT-WEB WEB FORUM 5.1 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors related to cookies...

4.3CVSS5.9AI score0.01656EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder