CVE-2006-2216

Open Bulletin Board (OpenBB) 1.0.8 is affected by a path-disclosure vulnerability. An invalid pforums parameter to misc.php and member.php can reveal the web server’s full filesystem path to remote attackers. This is a client-accessible information disclosure issue stemming from the handling of t...

CVE-2006-2088

Vulnerability summary (CVE-2006-2088) : OpenBB (Devsyn Open Bulletin Board) 1.0.6 is affected by multiple cross-site scripting (XSS) flaws. The vulnerabilities occur in the web interface through user-supplied input: the FID parameter in board.php and the TID parameter in read.php. The issue is ex...