Vulnerabilities > Jaxultrabb
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-07-02 | CVE-2008-2966 | Path Traversal vulnerability in Jaxultrabb Directory traversal vulnerability in viewprofile.php in JaxUltraBB 2.0 and earlier allows remote attackers to read arbitrary local files via a .. | 7.5 |
2006-10-25 | CVE-2006-5511 | HTML Injection vulnerability in Jaxultrabb 2.0 Direct static code injection vulnerability in delete.php in JaxUltraBB (JUBB) 2.0, when register_globals is enabled, allows remote attackers to inject arbitrary web script, HTML, or PHP via the contents parameter, whose value is prepended to the file specified by the forum parameter. | 2.6 |