Xmb@1.8 sp3 Security Vulnerabilities and Issues — Xmb@1.8 sp3 CVE List

Lucene search

Xmb ForumXmb1.8 sp3

5 matches found

CVE•added 2005/05/10 4:0 a.m.•43 views

CVE-2004-1862

Multiple cross-site scripting (XSS) vulnerabilities in Extreme Messageboard (XMB) 1.8 SP3 and 1.9 beta allow remote attackers to inject arbitrary web script or HTML via the (1) xmbuser parameter to xmb.php, (2) folder parameter to u2u.php, (3) viewmost, replymost, or latest parameter to stats.php, ...

4.3CVSS6AI score0.01558EPSS

CVE•added 2005/05/10 4:0 a.m.•35 views

CVE-2004-1863

Multiple cross-site scripting (XSS) vulnerabilities in XMB (aka extreme message board) 1.9 beta (aka Nexus beta) allow remote attackers to inject arbitrary web script or HTML via (1) the u2uheader parameter in editprofile.php, the restrict parameter in (2) member.php, (3) misc.php, and (4) today.ph...

4.3CVSS6AI score0.00624EPSS

CVE•added 2005/05/10 4:0 a.m.•32 views

CVE-2004-1864

SQL injection vulnerability in Extreme Messageboard (XMB) 1.9 beta allows remote attackers to execute arbitrary SQL commands via the restrict parameter to (1) member.php, (2) misc.php, or (3) today.php.

7.5CVSS8.8AI score0.01237EPSS

CVE•added 2005/11/19 1:3 a.m.•31 views

CVE-2005-3688

Cross-site scripting (XSS) vulnerability in members.php in XMB 1.9.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the "Your Current Mood" field in the registration page.

4.3CVSS6AI score0.00944EPSS

CVE•added 2005/05/10 4:0 a.m.•30 views

CVE-2004-1860

Buffer overflow in Check Point SmartDashboard in Check Point NG AI R54 and R55 allows remote authenticated users to cause a denial of service (server disconnect) and possibly execute arbitrary code via a large filter on a column when using SmartView Tracker.

5CVSS8AI score0.02283EPSS