📦 Gnuboard

This CVE describes a SQL injection vulnerability in gnuboard5's installation script that allows attackers to execute arbitrary SQL commands via the table_prefix parameter. It affects gnuboard5 install...

This vulnerability in GnuBoard5 uses weak cryptographic algorithms that allow attackers to decrypt sensitive user information. Attackers can derive email addresses of any user and send emails with con...

This is a reflected Cross-Site Scripting (XSS) vulnerability in Gnuboard 5.6.15 that allows authenticated attackers to inject malicious scripts via the c_id parameter in bbs/view_comment.php. The vuln...

This vulnerability allows attackers to perform second-order SQL injection attacks in gnuboard4 through the search_table parameter in bbs/search.php. Attackers can inject malicious SQL queries that get...

An open redirect vulnerability in gnuboard5 v5.5.16 allows attackers to redirect users to malicious websites by exploiting insufficient URL parameter validation in the logout.php file. This affects al...

An open redirect vulnerability in gnuboard5 v5.5.16 allows attackers to redirect users to malicious websites via the bbs/member_confirm.php endpoint. This can lead to phishing attacks, credential thef...

This CVE describes an Open Redirect vulnerability in Gnuboard v6.0.4 and earlier versions. Attackers can manipulate the 'url' parameter in the login path to redirect users to malicious websites after ...

This Cross-Site Scripting (XSS) vulnerability in Gnuboard g6 allows attackers to inject malicious scripts into web pages viewed by other users. It affects users of Gnuboard g6 content management syste...