RSS   Vulnerabilities for 'Yapbb'   RSS

2009-03-06
 
CVE-2009-0768

CWE-89
 

 
SQL injection vulnerability in forumhop.php in YapBB 1.2 and earlier allows remote attackers to execute arbitrary SQL commands via the forumID parameter in a next action.

 
2009-01-22
 
CVE-2008-5947

CWE-94
 

 
PHP remote file inclusion vulnerability in include/class_yapbbcooker.php in YapBB 1.2.Beta 2 allows remote attackers to execute arbitrary PHP code via a URL in the cfgIncludeDirectory parameter.

 
2006-12-18
 
CVE-2006-6633

 

 
PHP remote file inclusion vulnerability in include/yapbb_session.php in YapBB 1.2 Beta2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[include_Bit] parameter.

 
2006-05-19
 
CVE-2006-2486

CWE-Other
 

 
SQL injection vulnerability in find.php in YapBB 1.2 Beta2 and earlier allows remote attackers to execute arbitrary SQL commands via the userID parameter.

 


Copyright 2019, cxsecurity.com

 

Back to Top