Filtered by vendor Cannot
Subscribe
Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2008-4332 | 1 Cannot | 1 Php Infoboard | 2017-09-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in the showjavatopic function in func.php in PHP infoBoard V.7 Plus allows remote attackers to execute arbitrary SQL commands via the idcat parameter to showtopic.php. | |||||
CVE-2008-4333 | 1 Cannot | 1 Php Infoboard | 2017-09-28 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in PHP infoBoard V.7 Plus allows remote attackers to inject arbitrary web script or HTML via the isname parameter in a newtopic action. | |||||
CVE-2008-4334 | 1 Cannot | 1 Php Infoboard | 2017-09-28 | 7.5 HIGH | N/A |
PHP infoBoard V.7 Plus allows remote attackers to bypass authentication and gain administrative access by setting the infouser cookie to 1. |