CPE Details
Infopop Ultimate Bulletin Board (UBB) 5.43a
5.43
2023-05-03
12h17 +00:00
12h17 +00:00
2023-05-03
20h45 +00:00
20h45 +00:00
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
CPE Name: cpe:2.3:a:infopop:ultimate_bulletin_board:5.43:a:*:*:*:*:*:*
Informations
Vendor
infopopProduct
ultimate_bulletin_boardVersion
5.43Update
aRelated CVE
| CVE ID | Publié | Description | Score | Gravité |
|---|---|---|---|---|
| Infopop Ultimate Bulletin Board up to v5.47a was discovered to allow all messages posted inside private forums to be disclosed by unauthenticated users via the quote reply feature. | 5.3 |
Moyen |
||
| Cross-site scripting vulnerability in Infopop Ultimate Bulletin Board (UBB) 6.2.0 Beta Release 1.0 allows remote attackers to execute arbitrary script and steal cookies via a message containing encoded Javascript in an IMG tag. | 7.5 |
|||
| Cross-site scripting vulnerability in Infopop Ultimate Bulletin Board (UBB) before 5.47e allows remote attackers to steal user cookies via an [IMG] tag that references an about: URL with an onerror field. | 5 |
|||
| Infopop Ultimate Bulletin Board (UBB) allows remote attackers to execute commands via shell metacharacters in the topic hidden field. | 10 |
