Xmb@1.8 sp1 Security Vulnerabilities and Issues — Xmb@1.8 sp1 CVE List

Lucene search

Xmb ForumXmb1.8 sp1

3 matches found

CVE•added 2004/03/18 5:0 a.m.•42 views

CVE-2004-0322

Multiple cross-site scripting (XSS) vulnerabilities in XMB 1.8 Final SP2 allow remote attackers to execute arbitrary script as other users via the (1) member parameter in member.php, (2) uid parameter in u2uadmin.php, (3) user parameter in editprofile.php, (4) an onmouseover event in an align tag w...

4.3CVSS6.6AI score0.01235EPSS

CVE•added 2004/12/31 5:0 a.m.•37 views

CVE-2004-0323

Multiple SQL injection vulnerabilities in XMB 1.8 Final SP2 allow remote attackers to inject arbitrary SQL and gain privileges via the (1) ppp parameter in viewthread.php, (2) desc parameter in misc.php, (3) tpp parameter in forumdisplay.php, (4) ascdesc parameter in forumdisplay.php, or (5) the ad...

7.5CVSS8.4AI score0.00842EPSS

CVE•added 2005/11/19 1:3 a.m.•31 views

CVE-2005-3688

Cross-site scripting (XSS) vulnerability in members.php in XMB 1.9.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the "Your Current Mood" field in the registration page.

4.3CVSS6AI score0.00944EPSS