Infopop Ultimate Bulletin Board — known CVE vulnerabilities
Every CVE whose affected-product data names Infopop Ultimate Bulletin Board, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2000-0141 — CVSS 10.0 (critical): Infopop Ultimate Bulletin Board (UBB) allows remote attackers to execute commands via shell metacharacters in the topic hidden field.
CVE-2005-1199 — CVSS 7.5 (high): SQL injection vulnerability in printthread.php in UBB.Threads allows remote attackers to execute arbitrary SQL commands via the main…
CVE-2022-25091 — CVSS 5.3 (medium): Infopop Ultimate Bulletin Board up to v5.47a was discovered to allow all messages posted inside private forums to be disclosed by…
CVE-2001-0897 — CVSS 5.0 (medium): Cross-site scripting vulnerability in Infopop Ultimate Bulletin Board (UBB) before 5.47e allows remote attackers to steal user cookies via…
CVE-1999-0854 — CVSS 5.0 (medium): Ultimate Bulletin Board stores data files in the cgi-bin directory, allowing remote attackers to view the data if an error occurs when the…