Lucene search
K
MaxbMaxboard

4 matches found

CVE
CVE
added 2022/06/22 1:55 p.m.65 views

CVE-2021-26636

CVE-2021-26636 affects MaxBoard. The connected documents indicate a stored XSS and SQL injection vulnerability in MaxBoard that could lead to remote code execution, information exposure, and privilege escalation. The primary sources describe the vulnerable component as MaxBoard and emphasize impa...

9.6CVSS9.3AI score0.0138EPSS
CVE
CVE
added 2022/04/26 6:21 p.m.64 views

CVE-2021-26628

CVE-2021-26628 concerns MaxBoard CMS. Connected sources indicate a vulnerability in versions prior to 1.9.6 due to insufficient script validation on the admin page and weak validation of uploaded files. This allows an unauthenticated attacker to upload arbitrary files disguised as images, enablin...

8.1CVSS6.7AI score0.0073EPSS
CVE
CVE
added 2022/06/01 2:54 p.m.60 views

CVE-2021-26633

CVE-2021-26633 affects MaxBoard, a CMS/web framework. The connected sources describe a two-pronged vulnerability: SQL Injection and Local File Inclusion (LFI) in MaxBoard that can cause information leakage and privilege escalation. The root cause is manipulation of input variables to insert arbit...

9.8CVSS9.2AI score0.0084EPSS
CVE
CVE
added 2022/06/01 2:59 p.m.59 views

CVE-2021-26634

Maxboard/MaxBoard (Max Yi Korea) has input validation flaws in certain parameters/variables of files, allowing SQL injection and file upload attacks. This can lead to arbitrary code execution or privilege escalation, including web-shell-based server management compromise. Some sources indicate af...

9.8CVSS10AI score0.01226EPSS