Burning Board@2.3.3 Security Vulnerabilities and Issues — Burning Board@2.3.3 CVE List

Lucene search

WoltlabBurning Board2.3.3

5 matches found

CVE•added 2006/03/09 1:6 p.m.•45 views

CVE-2006-1094

SQL injection vulnerability in Datenbank MOD 2.7 and earlier for Woltlab Burning Board allows remote attackers to execute arbitrary SQL commands via the fileid parameter to (1) info_db.php or (2) database.php.

7.5CVSS8.4AI score0.01141EPSS

CVE•added 2006/05/24 11:2 p.m.•45 views

CVE-2006-2569

SQL injection vulnerability in links.php in 4R Linklist 1.0 RC2 and earlier, a module for Woltlab Burning Board, allows remote attackers to execute arbitrary SQL commands via the cat parameter.

7.5CVSS8.4AI score0.01052EPSS

CVE•added 2006/03/07 11:2 a.m.•38 views

CVE-2006-1034

Multiple cross-site scripting (XSS) vulnerabilities in Woltlab Burning Board (wBB) allow remote attackers to inject arbitrary web script or HTML via (1) the username parameter to galerie_index.php and possibly (2) galerie_onfly.php. NOTE: the provenance of this information is unknown; the details a...

4.3CVSS5.8AI score0.00268EPSS

CVE•added 2006/09/27 11:7 p.m.•35 views

CVE-2006-5029

SQL injection vulnerability in thread.php in WoltLab Burning Board (wBB) 2.3.x allows remote attackers to obtain the version numbers of PHP, MySQL, and wBB via the page parameter. NOTE: this issue might be a forced SQL error. Also, the original report was disputed by a third party for 2.3.3 and 2.3...

7.5CVSS8AI score0.00484EPSS

CVE•added 2007/03/20 8:19 p.m.•33 views

CVE-2007-1518

SQL injection vulnerability in usergroups.php in Woltlab Burning Board (wBB) 2.x allows remote attackers to execute arbitrary SQL commands via the array index of the applicationids array.

7.5CVSS8.4AI score0.00297EPSS