Page 2 of 10 results (0.014 seconds)

CVSS: 10.0EPSS: 0%CPEs: 13EXPL: 0

Multiple unspecified vulnerabilities in MyBulletinBoard (MyBB) before 1.0 have unknown impact and attack vectors, a different set of vulnerabilities than those identified by CVE-2005-4199. • http://community.mybboard.net/showthread.php?tid=5184&pid=30964#pid30964 http://secunia.com/advisories/18000 http://www.securityfocus.com/bid/15793 http://www.vupen.com/english/advisories/2005/2842 •

CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0

Multiple cross-site scripting (XSS) vulnerabilities in MyBulletinBoard (MyBB) 1.0 PR2 Rev 686 allow remote attackers to inject arbitrary web script or HTML via (1) the subject field when creating a new thread and (2) information passed to the Reputation system. • http://marc.info/?l=bugtraq&m=113198945111329&w=2 http://secunia.com/advisories/17577 •

CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0

MyBulletinBoard (MyBB) 1.0 PR2 Rev 686 allows remote attackers to delete or move private messages (PM) via modified fields in the inbox form. • http://marc.info/?l=bugtraq&m=113198945111329&w=2 http://secunia.com/advisories/17577 http://securityreason.com/securityalert/175 •

CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0

Unspecified vulnerability in MyBulletinBoard (MyBB) before 1.0 PR2 Rev 686 allows attackers to cause a denial of service via unknown vectors. • http://community.mybboard.net/showthread.php?tid=4507&pid=27223#pid27223 http://secunia.com/advisories/17577 •

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 3

SQL injection vulnerability in usercp.php in MyBulletinBoard (MyBB) allows remote attackers to execute arbitrary SQL commands via the awayday parameter. • https://www.exploit-db.com/exploits/26396 http://community.mybboard.net/showthread.php?tid=4507&pid=27223#pid27223 http://www.osvdb.org/20700 http://www.securityfocus.com/archive/1/414672 http://www.securityfocus.com/bid/15204 •