Fourtwosevenbb 427Bb vulnerabilities
2 known vulnerabilities affecting fourtwosevenbb/427bb.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2008-2560P3HIGHCVSS 7.5PoCv2.3.12008-06-06
CVE-2008-2560 [HIGH] CWE-89 CVE-2008-2560: SQL injection vulnerability in showpost.php in 427BB 2.3.1 allows remote attackers to execute arbitr
SQL injection vulnerability in showpost.php in 427BB 2.3.1 allows remote attackers to execute arbitrary SQL commands via the post parameter.
nvd
CVE-2008-2561P4MEDIUMCVSS 4.3PoCv2.3.12008-06-06
CVE-2008-2561 [MEDIUM] CWE-79 CVE-2008-2561: Multiple cross-site scripting (XSS) vulnerabilities in 427BB 2.3.1 allow remote attackers to inject
Multiple cross-site scripting (XSS) vulnerabilities in 427BB 2.3.1 allow remote attackers to inject arbitrary web script or HTML via the (1) PATH_INFO to (a) register.php, (b) reminder.php, and (c) search.php; the (2) uname, (3) email, and (4) email2 parameters to register.php; the (5) email parameter to reminder.php; and the (6) keywords parameter to s
nvd