Woltlab Burning Book vulnerabilities
3 known vulnerabilities affecting woltlab/burning_book.
Total CVEs
3
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH3
Vulnerabilities
Page 1 of 1
CVE-2006-5509P3HIGHCVSS 7.5PoCv1.1.22006-10-25
CVE-2006-5509 [HIGH] CVE-2006-5509: Eval injection vulnerability in addentry.php in WoltLab Burning Book 1.1.2 allows remote attackers t
Eval injection vulnerability in addentry.php in WoltLab Burning Book 1.1.2 allows remote attackers to execute arbitrary PHP code via crafted POST requests that store PHP code in a database that is later processed by eval, as demonstrated using SQL injection via the n parameter.
nvd
CVE-2006-5508P3HIGHCVSS 7.5PoCv1.1.22006-10-25
CVE-2006-5508 [HIGH] CVE-2006-5508: Multiple SQL injection vulnerabilities in addentry.php in WoltLab Burning Book 1.1.2 allow remote at
Multiple SQL injection vulnerabilities in addentry.php in WoltLab Burning Book 1.1.2 allow remote attackers to execute arbitrary SQL commands via (1) the n parameter and (2) the User-Agent HTTP header.
nvd
CVE-2005-0284P4HIGHCVSS 7.5v1.0_goldv1.1.1e2005-01-10
CVE-2005-0284 [HIGH] CVE-2005-0284: SQL injection vulnerability in addentry.php in Woltlab Burning Book 1.0 Gold, 1.1.1e, and possibly o
SQL injection vulnerability in addentry.php in Woltlab Burning Book 1.0 Gold, 1.1.1e, and possibly other versions, allows remote attackers to execute arbitrary SQL commands via the user-agent parameter.
nvd