Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Epic DesignsTinybb

3 matches found

CVE
CVEadded 2006/06/01 10:0 a.m.48 views

CVE-2006-2741

CVE-2006-2741 concerns an XSS vulnerability in Epicdesigns tinyBB 0.3. The description specifies that remote attackers can inject arbitrary script or HTML via the q parameter in forgot.php, which is echoed in an error message, and notes other unspecified vectors. The affected software is tinyBB 0...

6.8CVSS5.7AI score0.01607EPSS
CVE
CVEadded 2006/06/01 10:0 a.m.46 views

CVE-2006-2739

CVE-2006-2739 is a PHP remote file inclusion vulnerability in the Epicdesigns tinyBB 0.3 package. When PHP register_globals is enabled, an attacker can cause arbitrary PHP code execution by exploiting the tinybb_footers parameter in footers.php. The public records describe the vulnerability and a...

5.1CVSS7.5AI score0.08637EPSS
CVE
CVEadded 2006/06/01 10:0 a.m.37 views

CVE-2006-2740

CVE-2006-2740 describes SQL injection vulnerabilities in the Epicdesigns tinyBB 0.3 package. The affected components are the login flow and forgot/password recovery vectors: specifically the (1) q parameter in forgot.php and the (2) username and (3) password parameters in login.php, plus other un...

6.8CVSS8.7AI score0.03898EPSS