Vulnerabilities > Mxbb
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-10-03 | CVE-2007-5178 | Code Injection vulnerability in Mxbb MX Glance 2.3.3 contrib/mx_glance_sdesc.php in the mx_glance 2.3.3 module for mxBB places a critical security check within a comment because of a missing comment delimiter, which allows remote attackers to conduct remote file inclusion attacks and execute arbitrary PHP code via a URL in the mx_root_path parameter. | 6.8 |
| 2007-05-04 | CVE-2007-2493 | Remote File Include vulnerability in MXBB MX Faq Module Module_Root_Path PHP remote file inclusion vulnerability in faq.php in the FAQ & RULES 2.0.0 and earlier module for mxBB allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter. | 10.0 |
| 2007-04-26 | CVE-2007-2313 | Remote File Include vulnerability in Mxbb MX Shotcast 1.0Rc2 PHP remote file inclusion vulnerability in getinfo1.php in the Shotcast 1.0 RC2 module for mxBB allows remote attackers to execute arbitrary PHP code via a URL in the mx_root_path parameter. | 7.5 |
| 2006-12-20 | CVE-2006-6650 | Remote File Include vulnerability in MXBB Charts Module Module_Root_Path PHP remote file inclusion vulnerability in charts_constants.php in the Charts (mx_charts) 1.0.0 and earlier module for mxBB allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter. network mxbb | 6.8 |
| 2006-12-20 | CVE-2006-6645 | Remote File Include vulnerability in MXBB Web Links Module MX_Root_Path PHP remote file inclusion vulnerability in language/lang_english/lang_admin.php in the Web Links (mx_links) 2.05 and earlier module for mxBB allows remote attackers to execute arbitrary PHP code via a URL in the mx_root_path parameter. | 7.5 |
| 2006-12-20 | CVE-2006-6644 | Remote File Include vulnerability in MXBB Meeting Module Module_Root_Path PHP remote file inclusion vulnerability in pages/meeting_constants.php in the Meeting (mx_meeting) 1.1.2 and earlier module for mxBB allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter. network mxbb | 6.8 |
| 2006-12-18 | CVE-2006-6615 | Remote File Include vulnerability in Mxbb Activity Games Module 0.92 PHP remote file inclusion vulnerability in includes/act_constants.php in the Activity Games (mx_act) 0.92 module for mxBB allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter. | 7.5 |
| 2006-12-15 | CVE-2006-6568 | File Include vulnerability in Mxbb KB Mods 2.0.2 Directory traversal vulnerability in includes/kb_constants.php in the Knowledge Base (mx_kb) 2.0.2 module for mxBB allows remote attackers to include arbitrary files via a .. | 10.0 |
| 2006-12-15 | CVE-2006-6567 | File Include vulnerability in Mxbb KB Mods 2.0.2 PHP remote file inclusion vulnerability in includes/kb_constants.php in the Knowledge Base (mx_kb) 2.0.2 module for mxBB allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter. | 10.0 |
| 2006-12-15 | CVE-2006-6566 | Remote Security vulnerability in Mxbb 0.91C PHP remote file inclusion vulnerability in includes/profilcp_constants.php in the Profile Control Panel (CPanel) module for mxBB 0.91c allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter. | 7.5 |