Vulnerabilities > Maxb > Maxboard > 1.9.6

DATE CVE VULNERABILITY TITLE RISK
2022-06-23 CVE-2021-26636 SQL Injection vulnerability in Maxb Maxboard 1.9.6
Stored XSS and SQL injection vulnerability in MaxBoard could lead to occur Remote Code Execution, which could lead to information exposure and privilege escalation.
network
low complexity
maxb CWE-89
critical
 9.6
9.6
2022-04-26 CVE-2021-26628 Cross-site Scripting vulnerability in Maxb Maxboard 1.9.6
Insufficient script validation of the admin page enables XSS, which causes unauthorized users to steal admin privileges.
network
low complexity
maxb CWE-79
6.1
6.1