Cannot Php Infoboard vulnerabilities
3 known vulnerabilities affecting cannot/php_infoboard.
Total CVEs
3
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2008-4334P3HIGHCVSS 7.5PoCvv.72008-09-30
CVE-2008-4334 [HIGH] CWE-264 CVE-2008-4334: PHP infoBoard V.7 Plus allows remote attackers to bypass authentication and gain administrative acce
PHP infoBoard V.7 Plus allows remote attackers to bypass authentication and gain administrative access by setting the infouser cookie to 1.
nvd
CVE-2008-4332P3HIGHCVSS 7.5PoCvv.72008-09-30
CVE-2008-4332 [HIGH] CWE-89 CVE-2008-4332: SQL injection vulnerability in the showjavatopic function in func.php in PHP infoBoard V.7 Plus allo
SQL injection vulnerability in the showjavatopic function in func.php in PHP infoBoard V.7 Plus allows remote attackers to execute arbitrary SQL commands via the idcat parameter to showtopic.php.
nvd
CVE-2008-4333P4MEDIUMCVSS 4.3PoCvv.72008-09-30
CVE-2008-4333 [MEDIUM] CWE-79 CVE-2008-4333: Cross-site scripting (XSS) vulnerability in PHP infoBoard V.7 Plus allows remote attackers to inject
Cross-site scripting (XSS) vulnerability in PHP infoBoard V.7 Plus allows remote attackers to inject arbitrary web script or HTML via the isname parameter in a newtopic action.
nvd