Burning Board@2.3.4 Security Vulnerabilities and Issues — Burning Board@2.3.4 CVE List

Lucene search

WoltlabBurning Board2.3.4

5 matches found

CVE•added 2006/05/24 11:2 p.m.•45 views

CVE-2006-2569

SQL injection vulnerability in links.php in 4R Linklist 1.0 RC2 and earlier, a module for Woltlab Burning Board, allows remote attackers to execute arbitrary SQL commands via the cat parameter.

7.5CVSS8.4AI score0.01052EPSS

CVE•added 2006/06/03 1:2 a.m.•38 views

CVE-2006-2792

SQL injection vulnerability in misc.php in Woltlab Burning Board (WBB) 2.3.4 allows remote attackers to execute arbitrary SQL commands via the sid parameter.

7.5CVSS8.4AI score0.00502EPSS

CVE•added 2006/03/14 2:2 a.m.•35 views

CVE-2006-1215

Cross-site scripting (XSS) vulnerability in misc.php in Woltlab Burning Board (wBB) 2.3.4 allows remote attackers to inject arbitrary web script or HTML via the percent parameter. NOTE: this issue has been disputed in a followup post, although the original disclosure might be related to reflected X...

4.3CVSS5.7AI score0.00416EPSS

CVE•added 2006/09/27 11:7 p.m.•35 views

CVE-2006-5029

SQL injection vulnerability in thread.php in WoltLab Burning Board (wBB) 2.3.x allows remote attackers to obtain the version numbers of PHP, MySQL, and wBB via the page parameter. NOTE: this issue might be a forced SQL error. Also, the original report was disputed by a third party for 2.3.3 and 2.3...

7.5CVSS8AI score0.00484EPSS

CVE•added 2007/03/20 8:19 p.m.•33 views

CVE-2007-1518

SQL injection vulnerability in usergroups.php in Woltlab Burning Board (wBB) 2.x allows remote attackers to execute arbitrary SQL commands via the array index of the applicationids array.

7.5CVSS8.4AI score0.00297EPSS