Woltlab Burning Board Lite — known CVE vulnerabilities
Every CVE whose affected-product data names Woltlab Burning Board Lite, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2006-6237 — CVSS 7.5 (high): SQL injection vulnerability in the decode_cookie function in thread.php in Woltlab Burning Board Lite 1.0.2 allows remote attackers to…
CVE-2007-0812 — CVSS 7.5 (high): SQL injection vulnerability in pms.php in Woltlab Burning Board (wBB) Lite 1.0.2pl3e and earlier allows remote authenticated users to…
CVE-2007-6518 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in search.php in WoltLab Burning Board (wBB) Lite 1.0.2 pl3e allow remote attackers to execute…
CVE-2006-6289 — CVSS 6.8 (medium): Woltlab Burning Board (wBB) Lite 1.0.2 does not properly unset variables when the input data includes a numeric parameter with a value…
CVE-2008-1323 — CVSS 6.8 (medium): Cross-site request forgery (CSRF) vulnerability in index.php in WoltLab Burning Board Lite (wBB) 2 Beta 1 allows remote attackers to delete…
CVE-2007-1443 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in register.php in Woltlab Burning Board (wBB) 2.3.6 and Burning Board Lite 1.0.2pl3e…