CVE-2008-2023
published 2008-04-30CVE-2008-2023: Multiple SQL injection vulnerabilities in PD9 Software MegaBBS 2.2 allow remote attackers to execute arbitrary SQL commands via the (1) invisible and (2)…
PriorityP342high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
1.00%
58.5th percentile
Multiple SQL injection vulnerabilities in PD9 Software MegaBBS 2.2 allow remote attackers to execute arbitrary SQL commands via the (1) invisible and (2) timeoffset parameters to profile/controlpanel.asp and the (3) attachmentid parameter to forums/attach-file.asp.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| msrc | cbl2_kernel_5.15.111.1-1_on_cbl_mariner_2.0 | — | — |
| msrc | cbl_mariner_1.0_arm | — | — |
| msrc | cbl_mariner_1.0_x64 | — | — |
| msrc | cbl_mariner_2.0_arm | — | — |
| msrc | cbl_mariner_2.0_x64 | — | — |
| msrc | cm1_kernel_5.10.181.1-1_on_cbl_mariner_1.0 | — | — |
| pd9_software | megabbs | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_msrc7.8HIGH
vendor_redhat7.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Graylog vulnerable to insecure source port usage for DNS queries
ghsa·2023-07-06
CVE-2023-41045 [LOW] CWE-345 Graylog vulnerable to insecure source port usage for DNS queries
Graylog vulnerable to insecure source port usage for DNS queries
### Summary
Graylog utilises only one single source port for DNS queries.
### Details
Graylog seems to bind a single socket for outgoing DNS queries. That socket is bound to a random port number which is not changed again. This goes against recommended practice since 2008, when Dan Kaminsky discovered how easy is to carry out DNS cache poisoning attacks. In order to prevent cache poisoning with spoofed DNS responses, it is necessary to maximise the uncertainty in the choice of a source port for a DNS query.
### PoC
The attached figure shows the source ports distribution difference between Graylog configured to use a data adapter based on DNS queries and ISC Bind. The source port distribution of the DNS queries sent from
GHSA
GHSA-57hw-9ccm-w3ch: Multiple SQL injection vulnerabilities in PD9 Software MegaBBS 2
ghsa_unreviewed·2022-05-01
CVE-2008-2023 [HIGH] CWE-89 GHSA-57hw-9ccm-w3ch: Multiple SQL injection vulnerabilities in PD9 Software MegaBBS 2
Multiple SQL injection vulnerabilities in PD9 Software MegaBBS 2.2 allow remote attackers to execute arbitrary SQL commands via the (1) invisible and (2) timeoffset parameters to profile/controlpanel.asp and the (3) attachmentid parameter to forums/attach-file.asp.
Red Hat
kernel: nubus: Partially revert proc_create_single_data() conversion
vendor_redhat·2025-09-15·CVSS 7.8
CVE-2023-53217 [HIGH] kernel: nubus: Partially revert proc_create_single_data() conversion
kernel: nubus: Partially revert proc_create_single_data() conversion
In the Linux kernel, the following vulnerability has been resolved:
nubus: Partially revert proc_create_single_data() conversion
The conversion to proc_create_single_data() introduced a regression
whereby reading a file in /proc/bus/nubus results in a seg fault:
# grep -r . /proc/bus/nubus/e/
Data read fault at 0x00000020 in Super Data (pc=0x1074c2)
BAD KERNEL BUSERR
Oops: 00000000
Modules linked in:
PC: [] PDE_DATA+0xc/0x16
SR: 2010 SP: 38284958 a2: 01152370
d0: 00000001 d1: 01013000 d2: 01002790 d3: 00000000
d4: 00000001 d5: 0008ce2e a0: 00000000 a1: 00222a40
Process grep (pid: 45, task=142f8727)
Frame format=B ssw=074d isc=2008 isb=4e5e daddr=00000020 dobuf=01199e70
baddr=001074c8 dibuf=ffffffff ver=f
Stack from 01199
Microsoft
A flaw was found in the Linux kernel's udmabuf device driver. The specific flaw exists within a fault handler. The issue results from the lack of proper validation of user-supplied data which can resu
vendor_msrc·2023-04-11·CVSS 7.8
CVE-2023-2008 [HIGH] CWE-129 A flaw was found in the Linux kernel's udmabuf device driver. The specific flaw exists within a fault handler. The issue results from the lack of proper validation of user-supplied data which can resu
A flaw was found in the Linux kernel's udmabuf device driver. The specific flaw exists within a fault handler. The issue results from the lack of proper validation of user-supplied data which can result in a memory access past the end of an array. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the kernel.
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this
No detection rules found.
Exploit-DB
Megabbs Forum 2.2 - SQL Injection / Cross-Site Scripting
exploitdb·2008-04-27
CVE-2008-2023 Megabbs Forum 2.2 - SQL Injection / Cross-Site Scripting
Megabbs Forum 2.2 - SQL Injection / Cross-Site Scripting
---
########################## www.BugReport.ir #######################################
#
# AmnPardaz Security Research Team
#
# Title: MegaBBS Forum Multiple Vulnerabilities.
# Vendor: http://www.pd9soft.com/
# Vulnerable Version: 2.2
# Exploit: Available
# Impact: Medium
# Fix: N/A
# Original Advisory: http://bugreport.ir/index.php?/37
###################################################################################
####################
1. Description:
####################
A complete, fully featured ASP website system. Includes an extremely powerful forum, calendars, polls, and photo albums. Best of all, it's completely free! Find out why MegaBBS is one of the fastest growing ASP messaging portals available today.
##########
Nuclei
Modoboa < 2.1.0 - Improper Authorization
nuclei·CVSS 9.1
CVE-2023-2227 [CRITICAL] Modoboa < 2.1.0 - Improper Authorization
Modoboa < 2.1.0 - Improper Authorization
Improper Authorization in GitHub repository modoboa/modoboa prior to 2.1.0.
Template:
id: CVE-2023-2227
info:
name: Modoboa < 2.1.0 - Improper Authorization
author: ritikchaddha,princechaddha
severity: critical
description: |
Improper Authorization in GitHub repository modoboa/modoboa prior to 2.1.0.
impact: |
Unauthenticated attackers can access sensitive configuration parameters including default passwords and authentication settings through the API endpoint, potentially compromising the entire email management system.
remediation: |
Update Modoboa to version 2.1.0 or later that implements proper authorization checks for the parameters API endpoint.
reference:
- https://huntr.com/bounties/351f9055-2008-4af0-b820-01ff66678bf3
- https://github.c
Bleepingcomputer
CISA tags Windows, Cisco vulnerabilities as actively exploited
blogs_bleepingcomputer·2025-03-03·CVSS 7.8
CVE-2023-20025 [HIGH] CISA tags Windows, Cisco vulnerabilities as actively exploited
## CISA tags Windows, Cisco vulnerabilities as actively exploited
## Sergiu Gatlan
Cisco says in an advisory published in January 2023 and updated one year later that its Product Security Incident Response Team (PSIRT) is aware of CVE-2023-20025 publicly available proof-of-concept exploit code.
The second security bug ( CVE-2018-8639 ) is a Win32k elevation of privilege flaw that local attackers logged into the target system can exploit to run arbitrary code in kernel mode. Successful exploitation also allows them to alter data or create rogue accounts with full user rights to take over vulnerable Windows devices.
According to a security advisory issued by Microsoft in December 2018, this vulnerability impacts client (Windows 7 or later) and server (Windows Server 2008 and up) platform
Krebs
Microsoft Patch Tuesday, December 2023 Edition
blogs_krebs·2023-12-13·CVSS 8.1
[HIGH] Microsoft Patch Tuesday, December 2023 Edition
The final Patch Tuesday of 2023 is upon us, with Microsoft Corp. today releasing fixes for a relatively small number of security holes in its Windows operating systems and other software. Even more unusual, there are no known “zero-day” threats targeting any of the vulnerabilities in December’s patch batch. Still, four of the updates pushed out today address “critical” vulnerabilities that Microsoft says can be exploited by malware or malcontents to seize complete control over a vulnerable Windows device with little or no help from users.
Among the critical bugs quashed this month is CVE-2023-35628, a weakness present in Windows 10 and later versions, as well as Microsoft Server 2008 and later. Kevin Breen, senior director of threat research at Immersive Labs, said the flaw affects MSHTML
Krebs
Microsoft Patch Tuesday, December 2023 Edition
blogs_krebs·2023-12-12·CVSS 8.1
[HIGH] Microsoft Patch Tuesday, December 2023 Edition
The final Patch Tuesday of 2023 is upon us, with Microsoft Corp. today releasing fixes for a relatively small number of security holes in its Windows operating systems and other software. Even more unusual, there are no known “zero-day” threats targeting any of the vulnerabilities in December’s patch batch. Still, four of the updates pushed out today address “critical” vulnerabilities that Microsoft says can be exploited by malware or malcontents to seize complete control over a vulnerable Windows device with little or no help from users.
Among the critical bugs quashed this month is CVE-2023-35628 , a weakness present in Windows 10 and later versions, as well as Microsoft Server 2008 and later. Kevin Breen , senior director of threat research at Immersive Labs , said the flaw affects MSH
http://secunia.com/advisories/29979http://www.bugreport.ir/?/37http://www.securityfocus.com/bid/28961https://exchange.xforce.ibmcloud.com/vulnerabilities/42044https://www.exploit-db.com/exploits/5507http://secunia.com/advisories/29979http://www.bugreport.ir/?/37http://www.securityfocus.com/bid/28961https://exchange.xforce.ibmcloud.com/vulnerabilities/42044https://www.exploit-db.com/exploits/5507
2008-04-30
Published