CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

securityvulns•added 2004/09/28 12:0 a.m.•49 views

[SA12609] YaBB Input Validation Vulnerabilities

TITLE: YaBB Input Validation Vulnerabilities SECUNIA ADVISORY ID: SA12609 VERIFY ADVISORY: http://secunia.com/advisories/12609/ CRITICAL: Less critical IMPACT: Cross Site Scripting, Manipulation of data WHERE: From remote SOFTWARE: YaBB 1.x http://secunia.com/product/541/ DESCRIPTION: Two...

0.5AI score

Exploits0

Tenable Nessus•added 2004/09/21 12:0 a.m.•14 views

YaBB Multiple Vulnerabilities

Binary data 2305.prm...

10CVSS7.3AI score0.01453EPSS

Exploits2References2

Tenable Nessus•added 2004/09/21 12:0 a.m.•259 views

YaBB 1 GOLD SP 1.3.2 Multiple Vulnerabilities

The 'YaBB.pl' CGI is installed. This version is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied input. As a result of this vulnerability, it is possible for a remote attacker to create a malicious link containi...

10CVSS5.8AI score0.01453EPSS

Exploits2References3

Exploit DB•added 2004/03/15 12:0 a.m.•23 views

YABB SE 1.5.1 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/9873/info It has been reported that YaBB and YaBB SE are prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure of the applications to properly validate URI supplied user input. Attackers may exploit this vulnerability t...

7.4AI score

Exploits0

NVD•added 2003/12/31 5:0 a.m.•10 views

CVE-2003-1277

Cross-site scripting XSS vulnerabilities in Yet Another Bulletin Board YaBB 1.5.0 allow remote attackers to execute arbitrary script as other users and possibly steal authentication information via cookies by injecting arbitrary HTML or script into 1 newsicon of newstemplate.php, and 2 threadid a...

4.3CVSS6.7AI score0.00683EPSS

Exploits1References4

securityvulns•added 2002/10/19 12:0 a.m.•75 views

New Vulnerability on YaBB 1.4.0 and YaBB 1.4.1 forums

Two security vulnerabilities in YaBB allows stealing users cookies and hijacking users accounts. Tested on: YaBB 1.40 & 1.41 Summary : YaBB is a leading provider of free, downloadable php forums for webmasters. Two security vulnerabilities in the product allows a remote attacker to steal users...

7AI score

Exploits0

securityvulns•added 2002/01/10 12:0 a.m.•51 views

CSS vulnerabilities in YaBB and UBB allow account hijack [Multiple Vendor]

Advisory Title: CSS vulnerabilities in YaBB and UBB allow account hijack Multiple Vendor Release Date: 08/01/2002 Application: YaBB and UBB Platform: Any system supporting PERL. Build - YaBB : 1 Gold - Service Pack 1 - older versions were effected in the same way. UBB : Ultimate Bulletin BoardTM...

7AI score

Exploits0

securityvulns•added 2000/11/08 12:0 a.m.•25 views

Дырки в YaBB search.pl

Классические ошибки Perl-CGI позволяют доступ к любому файлу и выполнение любых приложений...

0.5AI score

Exploits0References1

Packet Storm•added 2000/09/13 12:0 a.m.•24 views

yabb.txt

YaBB 9.1.2000 Multiple Vulnerabilities + Advisory by pestilence www.synnergy.net |===============================================| Affected program: YABB 9.1.2000 previous ? System : Linux, UNIX, Windows Problem : Problem located in all scripts that handle files. Discovery :...

7.4AI score

Exploits0

securityvulns•added 2000/09/11 12:0 a.m.•54 views

YaBB 1.9.2000 Vulnerabilitie

7.3AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by