CVE-2005-4603
https://notcve.org/view.php?id=CVE-2005-4603
Cross-site scripting (XSS) vulnerability in printthread.php in MyBB 1.0.1 and earlier allows remote attackers to inject arbitrary web script or HTML via a thread message, which is not properly sanitized in the print view of the thread. • http://secunia.com/advisories/18281 http://securityreason.com/securityalert/310 http://www.osvdb.org/21601 http://www.securityfocus.com/archive/1/420569/100/0/threaded http://www.securityfocus.com/bid/16096 http://www.vupen.com/english/advisories/2006/0012 •
CVE-2005-4200
https://notcve.org/view.php?id=CVE-2005-4200
Multiple unspecified vulnerabilities in MyBulletinBoard (MyBB) before 1.0 have unknown impact and attack vectors, a different set of vulnerabilities than those identified by CVE-2005-4199. • http://community.mybboard.net/showthread.php?tid=5184&pid=30964#pid30964 http://secunia.com/advisories/18000 http://www.securityfocus.com/bid/15793 http://www.vupen.com/english/advisories/2005/2842 •
CVE-2005-3326 – MyBulletinBoard (MyBB) 1.0 - 'usercp.php' SQL Injection
https://notcve.org/view.php?id=CVE-2005-3326
SQL injection vulnerability in usercp.php in MyBulletinBoard (MyBB) allows remote attackers to execute arbitrary SQL commands via the awayday parameter. • https://www.exploit-db.com/exploits/26396 http://community.mybboard.net/showthread.php?tid=4507&pid=27223#pid27223 http://www.osvdb.org/20700 http://www.securityfocus.com/archive/1/414672 http://www.securityfocus.com/bid/15204 •
CVE-2005-2778
https://notcve.org/view.php?id=CVE-2005-2778
SQL injection vulnerability in member.php in MyBulletinBoard (MyBB) allows remote attackers to execute arbitrary SQL statements via the fid parameter. • http://marc.info/?l=bugtraq&m=112535137320050&w=2 http://www.securityfocus.com/bid/14684 •
CVE-2005-2697 – MyBulletinBoard (MyBB) 1.00 RC4 - 'search.php' SQL Injection
https://notcve.org/view.php?id=CVE-2005-2697
SQL injection vulnerability in search.php for MyBulletinBoard (MyBB) 1.00 Release Candidate 1 through 4 allows remote attackers to execute arbitrary SQL commands via the uid parameter. NOTE: this issue might overlap CVE-2005-0282. • https://www.exploit-db.com/exploits/1172 http://marc.info/?l=bugtraq&m=112448791006470&w=2 http://secunia.com/advisories/13722 http://www.securityfocus.com/bid/14615 •