MidnightBSD

Advisories for woltlab

CVE-2002-0903 HIGH

register.php for WoltLab Burning Board (wbboard) 1.1.1 uses a small number of random values for the "code" parameter that is provided to action.php to approve a new registration, along with predictable new user ID's, which allows remote attackers to hijack new user accounts via a brute force attack on the new user ID and the code value.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
woltlab burning_board 1.1.1
CVE-2002-1505 HIGH

SQL injection vulnerability in board.php for WoltLab Burning Board (wBB) 2.0 RC 1 and earlier allows remote attackers to modify the database and possibly gain privileges via the boardid parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
woltlab burning_board 2.0_beta_4
woltlab burning_board *
woltlab burning_board 2.0_beta_3
woltlab burning_board 2.0_beta_5
CVE-2002-2021 MEDIUM

Cross-site scripting (XSS) vulnerability in WoltLab Burning Board (wbboard) 1.1.1 allows remote attackers to inject arbitrary web script or HTML via the message parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
woltlab burning_board 1.1.1
CVE-2005-0284 HIGH

SQL injection vulnerability in addentry.php in Woltlab Burning Book 1.0 Gold, 1.1.1e, and possibly other versions, allows remote attackers to execute arbitrary SQL commands via the user-agent parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
woltlab burning_book 1.0_gold
woltlab burning_book 1.1.1e
CVE-2005-0661 HIGH

SQL injection vulnerability in the getwbbuserdata function in session.php for Woltlab Burning Board 2.0.3 through 2.3.0 allows remote attackers to execute arbitrary SQL commands via the (1) userid or (2) lastvisit cookie.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
woltlab burning_board 2.2.1
woltlab burning_board 2.3.0
woltlab burning_board 2.0.3
woltlab burning_board 2.1.5
CVE-2005-1285 MEDIUM

Cross-site scripting (XSS) vulnerability in thread.php in WoltLab Burning Board 2.3.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the hilight parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
woltlab burning_board *
CVE-2005-1327 MEDIUM

Cross-site scripting (XSS) vulnerability in pms.php for Woltlab Burning Board 2.3.1 PL2 and earlier allows remote attackers to inject arbitrary web script or HTML via the folderid parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
woltlab burning_board *
CVE-2005-1642 HIGH

SQL injection vulnerability in the verify_email function in Woltlab Burning Board 2.x and earlier allows remote attackers to execute arbitrary SQL commands via the $email variable.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
woltlab burning_board 2.0
CVE-2005-2673 HIGH

SQL injection vulnerability in modcp.php in WoltLab Burning Board 2.2.2 and 2.3.3 allows remote authenticated attackers to execute arbitrary SQL commands via the (1) x or (2) y parameters.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
woltlab burning_board 2.2.2
woltlab burning_board 2.2.3
CVE-2006-0927 LOW

Multiple cross-site scripting (XSS) vulnerabilities in the JGS-XA JGS-Gallery Addon 4.0.0 and earlier for Woltlab Burning Board (wBB) 2.x allow remote attackers to inject arbitrary web script or HTML via the (1) userid parameter in (a) jgs_galerie_slideshow.php and (b) jgs_galerie_scroll.php, and the (2) katid parameter in (c) jgs_galerie_slideshow.php.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
woltlab burning_board 2.2.1
woltlab burning_board 2.3.0
woltlab burning_board 2.0.3
woltlab burning_board 2.0
woltlab burning_board 2.1.5
woltlab burning_board 2.2.2
jgs-xa jgs-gallery_addon 4.0
woltlab burning_board 2.3.1
woltlab burning_board 2.2.3
CVE-2006-1034 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in Woltlab Burning Board (wBB) allow remote attackers to inject arbitrary web script or HTML via (1) the username parameter to galerie_index.php and possibly (2) galerie_onfly.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. The second vector might not be XSS.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
woltlab burning_board 2.0_beta_3
woltlab burning_board 2.2.2
woltlab burning_board 1.1.1
woltlab burning_board 2.4
woltlab burning_board 2.3.3
woltlab burning_board 2.0_beta_4
woltlab burning_board 2.5
woltlab burning_board 2.7
woltlab burning_board 2.6
woltlab burning_board 2.3.1
woltlab burning_board 2.0_rc1
woltlab burning_board 2.0_rc2
woltlab burning_board 2.0_beta_5
CVE-2006-1094 HIGH

SQL injection vulnerability in Datenbank MOD 2.7 and earlier for Woltlab Burning Board allows remote attackers to execute arbitrary SQL commands via the fileid parameter to (1) info_db.php or (2) database.php.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
datenbank_module datenbank_module *
woltlab burning_board 2.0_beta_3
woltlab burning_board 2.2.2
woltlab burning_board 1.1.1
woltlab burning_board 2.4
woltlab burning_board 2.3.3
woltlab burning_board 2.0_beta_4
woltlab burning_board 2.5
woltlab burning_board 2.7
woltlab burning_board 2.6
woltlab burning_board 2.3.1
woltlab burning_board 2.0_rc1
woltlab burning_board 2.0_rc2
woltlab burning_board 2.0_beta_5
CVE-2006-1215 MEDIUM

Cross-site scripting (XSS) vulnerability in misc.php in Woltlab Burning Board (wBB) 2.3.4 allows remote attackers to inject arbitrary web script or HTML via the percent parameter. NOTE: this issue has been disputed in a followup post, although the original disclosure might be related to reflected XSS.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
woltlab burning_board 2.3.4
CVE-2006-1324 MEDIUM

Cross-site scripting (XSS) vulnerability in acp/lib/class_db_mysql.php in Woltlab Burning Board (wBB) 2.3.4 allows remote attackers to inject arbitrary web script or HTML via the errormsg parameter when a SQL error is generated.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
woltlab burning_board *
CVE-2006-2569 HIGH

SQL injection vulnerability in links.php in 4R Linklist 1.0 RC2 and earlier, a module for Woltlab Burning Board, allows remote attackers to execute arbitrary SQL commands via the cat parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
woltlab burning_board 2.0_beta_4
woltlab burning_board 2.0_beta_3
4r_linklist 4r_linklist *
woltlab burning_board 2.3.4
woltlab burning_board 2.2.2
woltlab burning_board 2.3.1
woltlab burning_board 2.0_rc1
woltlab burning_board 2.3.3
woltlab burning_board 2.0_rc2
woltlab burning_board 2.0_beta_5
CVE-2006-2792 HIGH

SQL injection vulnerability in misc.php in Woltlab Burning Board (WBB) 2.3.4 allows remote attackers to execute arbitrary SQL commands via the sid parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
woltlab burning_board 2.3.4
CVE-2006-3218 HIGH

SQL injection vulnerability in profile.php in Woltlab Burning Board (WBB) 2.1.6 allows remote attackers to execute arbitrary SQL commands via the userid parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
woltlab burning_board 2.1.6
CVE-2006-3219 HIGH

SQL injection vulnerability in thread.php in Woltlab Burning Board (WBB) 2.2.2 allows remote attackers to execute arbitrary SQL commands via the threadid parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
woltlab burning_board 2.2.2
CVE-2006-3220 HIGH

SQL injection vulnerability in studienplatztausch.php in Woltlab Burning Board (WBB) 2.2.1 allows remote attackers to execute arbitrary SQL commands via the sid parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
woltlab burning_board 2.2.1
CVE-2006-3254 HIGH

SQL injection vulnerability in newthread.php in Woltlab Burning Board (WBB) 2.0 RC2 allows remote attackers to execute arbitrary SQL commands via the boardid parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
woltlab burning_board 2.0_rc2
CVE-2006-3255 HIGH

SQL injection vulnerability in showmods.php in Woltlab Burning Board (WBB) 1.2 allows remote attackers to execute arbitrary SQL commands via the boardid parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
woltlab burning_board 1.2
CVE-2006-3256 HIGH

SQL injection vulnerability in report.php in Woltlab Burning Board (WBB) 2.3.1 allows remote attackers to execute arbitrary SQL commands via the postid parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
woltlab burning_board 2.3.1