3 matches found
CVE-2003-1162
Tritanium Bulletin Board 1.2.3 is affected by CVE-2003-1162. The vulnerability arises from index.php allowing remote attackers to read and reply to arbitrary messages by manipulating thread_id, forum_id, and sid parameters. The available sources describe the affected component and negligence in p...
CVE-2006-1768
CVE-2006-1768 affects Tritanium Bulletin Board (TBB) 1.2.3. The vulnerability is an XSS flaw in register.php where the attacker can inject arbitrary script/HTML via the (1) newuser_name, (2) newuser_email, or (3) newuser_hp parameters in the faction=register mode of index.php. The associated conn...
CVE-2006-1815
CVE-2006-1815 affects Tritanium Bulletin Board (TBB) 1.2.3: register.php is vulnerable to reflected XSS via the newuser_realname and newuser_icq parameters in the faction=register flow (index.php), allowing remote script/HTML injection. This vector is distinct from CVE-2006-1768. Root cause cited...