Ubb.threads@3.5 Security Vulnerabilities and Issues — Ubb.threads@3.5 CVE List

Lucene search

UbbcentralUbb.threads3.5

4 matches found

CVE•added 2005/02/20 5:0 a.m.•53 views

CVE-2004-1622

SQL injection vulnerability in dosearch.php in UBB.threads 3.4.x allows remote attackers to execute arbitrary SQL statements via the Name parameter.

7.5CVSS8.2AI score0.00329EPSS

CVE•added 2006/05/30 9:2 p.m.•51 views

CVE-2006-2675

PHP remote file inclusion vulnerability in ubbt.inc.php in UBBThreads 5.x and 6.x allows remote attackers to execute arbitrary PHP code via a URL in the (1) thispath or (2) configdir parameters.

5.1CVSS7.6AI score0.01676EPSS

CVE•added 2009/08/13 4:30 p.m.•48 views

CVE-2008-6970

SQL injection vulnerability in dosearch.inc.php in UBB.threads 7.3.1 and earlier allows remote attackers to execute arbitrary SQL commands via the Forum[] array parameter.

7.5CVSS8.7AI score0.01851EPSS

CVE•added 2012/09/23 5:55 p.m.•48 views

CVE-2012-5104

Cross-site scripting (XSS) vulnerability in forums/ubbthreads.php in UBB.threads 7.5.6 and earlier allows remote attackers to inject arbitrary web script or HTML via the Loginname parameter.

4.3CVSS5.9AI score0.0631EPSS