Vulnerabilities > Jaxultrabb > Jaxultrabb > 2.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-10-25 | CVE-2006-5511 | HTML Injection vulnerability in Jaxultrabb 2.0 Direct static code injection vulnerability in delete.php in JaxUltraBB (JUBB) 2.0, when register_globals is enabled, allows remote attackers to inject arbitrary web script, HTML, or PHP via the contents parameter, whose value is prepended to the file specified by the forum parameter. | 2.6 |