Stewart Howe Celerbb vulnerabilities
3 known vulnerabilities affecting stewart_howe/celerbb.
Total CVEs
3
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2009-0853P3MEDIUMCVSS 6.8PoCv0.0.22009-03-09
CVE-2009-0853 [MEDIUM] CWE-287 CVE-2009-0853: login.php in CelerBB 0.0.2, when magic_quotes_gpc is disabled, allows remote attackers to bypass aut
login.php in CelerBB 0.0.2, when magic_quotes_gpc is disabled, allows remote attackers to bypass authentication and obtain administrative access via special characters in the Username parameter, as demonstrated by an admin'# parameter value.
nvd
CVE-2009-0851P3MEDIUMCVSS 6.8PoCv0.0.22009-03-09
CVE-2009-0851 [MEDIUM] CWE-89 CVE-2009-0851: Multiple SQL injection vulnerabilities in CelerBB 0.0.2, when magic_quotes_gpc is disabled, allow re
Multiple SQL injection vulnerabilities in CelerBB 0.0.2, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) viewforum.php and (2) viewtopic.php.
nvd
CVE-2009-0852P4MEDIUMCVSS 5.0PoCv0.0.22009-03-09
CVE-2009-0852 [MEDIUM] CWE-200 CVE-2009-0852: showme.php in CelerBB 0.0.2 allows remote attackers to obtain "reserved information" via the user pa
showme.php in CelerBB 0.0.2 allows remote attackers to obtain "reserved information" via the user parameter.
nvd