4 results (0.011 seconds)

CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 1

Cross-site scripting vulnerability (XSS) in WWWBoard 2.0A2.1 and earlier allows remote attackers to inject arbitrary HTML or web script via a message post. • http://archives.neohapsis.com/archives/bugtraq/2003-02/0274.html http://www.iss.net/security_center/static/11383.php http://www.securityfocus.com/bid/6918 •

CVSS: 10.0EPSS: 10%CPEs: 1EXPL: 1

WWWBoard stores encrypted passwords in a password file that is under the web root and thus accessible by remote attackers. • https://www.exploit-db.com/exploits/3065 https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0953 •

CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0

WWWBoard has a default username and default password. • http://www.securityfocus.com/bid/649 •

CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0

wwwboard allows a remote attacker to delete message board articles via a malformed argument. • http://www.securityfocus.com/bid/1795 http://www.worldwidemart.com/scripts/faq/wwwboard/q5.shtml https://exchange.xforce.ibmcloud.com/vulnerabilities/2344 •