CVE-2003-1237
https://notcve.org/view.php?id=CVE-2003-1237
Cross-site scripting vulnerability (XSS) in WWWBoard 2.0A2.1 and earlier allows remote attackers to inject arbitrary HTML or web script via a message post. • http://archives.neohapsis.com/archives/bugtraq/2003-02/0274.html http://www.iss.net/security_center/static/11383.php http://www.securityfocus.com/bid/6918 •
CVE-1999-0953 – WWWBoard 2.0 - 'passwd.txt' Remote Password Disclosure
https://notcve.org/view.php?id=CVE-1999-0953
WWWBoard stores encrypted passwords in a password file that is under the web root and thus accessible by remote attackers. • https://www.exploit-db.com/exploits/3065 https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0953 •
CVE-1999-0954
https://notcve.org/view.php?id=CVE-1999-0954
WWWBoard has a default username and default password. • http://www.securityfocus.com/bid/649 •
CVE-1999-0930
https://notcve.org/view.php?id=CVE-1999-0930
wwwboard allows a remote attacker to delete message board articles via a malformed argument. • http://www.securityfocus.com/bid/1795 http://www.worldwidemart.com/scripts/faq/wwwboard/q5.shtml https://exchange.xforce.ibmcloud.com/vulnerabilities/2344 •