Vulnerabilities > Mxbb

DATE CVE VULNERABILITY TITLE RISK
2007-10-03 CVE-2007-5178 Code Injection vulnerability in Mxbb MX Glance 2.3.3
contrib/mx_glance_sdesc.php in the mx_glance 2.3.3 module for mxBB places a critical security check within a comment because of a missing comment delimiter, which allows remote attackers to conduct remote file inclusion attacks and execute arbitrary PHP code via a URL in the mx_root_path parameter.
network
mxbb CWE-94
6.8
2007-05-04 CVE-2007-2493 Remote File Include vulnerability in MXBB MX Faq Module Module_Root_Path
PHP remote file inclusion vulnerability in faq.php in the FAQ & RULES 2.0.0 and earlier module for mxBB allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter.
network
low complexity
mxbb
critical
10.0
2007-04-26 CVE-2007-2313 Remote File Include vulnerability in Mxbb MX Shotcast 1.0Rc2
PHP remote file inclusion vulnerability in getinfo1.php in the Shotcast 1.0 RC2 module for mxBB allows remote attackers to execute arbitrary PHP code via a URL in the mx_root_path parameter.
network
low complexity
mxbb
7.5
2006-12-20 CVE-2006-6644 Remote File Include vulnerability in MXBB Meeting Module Module_Root_Path
PHP remote file inclusion vulnerability in pages/meeting_constants.php in the Meeting (mx_meeting) 1.1.2 and earlier module for mxBB allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter.
network
mxbb
6.8
2006-12-20 CVE-2006-6645 Remote File Include vulnerability in MXBB Web Links Module MX_Root_Path
PHP remote file inclusion vulnerability in language/lang_english/lang_admin.php in the Web Links (mx_links) 2.05 and earlier module for mxBB allows remote attackers to execute arbitrary PHP code via a URL in the mx_root_path parameter.
network
low complexity
mxbb
7.5
2006-12-20 CVE-2006-6650 Remote File Include vulnerability in MXBB Charts Module Module_Root_Path
PHP remote file inclusion vulnerability in charts_constants.php in the Charts (mx_charts) 1.0.0 and earlier module for mxBB allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter.
network
mxbb
6.8
2006-12-18 CVE-2006-6615 Remote File Include vulnerability in Mxbb Activity Games Module 0.92
PHP remote file inclusion vulnerability in includes/act_constants.php in the Activity Games (mx_act) 0.92 module for mxBB allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter.
network
low complexity
mxbb
7.5
2006-12-15 CVE-2006-6566 Remote Security vulnerability in Mxbb 0.91C
PHP remote file inclusion vulnerability in includes/profilcp_constants.php in the Profile Control Panel (CPanel) module for mxBB 0.91c allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter.
network
low complexity
mxbb
7.5
2006-12-15 CVE-2006-6567 File Include vulnerability in Mxbb KB Mods 2.0.2
PHP remote file inclusion vulnerability in includes/kb_constants.php in the Knowledge Base (mx_kb) 2.0.2 module for mxBB allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter.
network
low complexity
mxbb
critical
10.0
2006-12-15 CVE-2006-6568 File Include vulnerability in Mxbb KB Mods 2.0.2
Directory traversal vulnerability in includes/kb_constants.php in the Knowledge Base (mx_kb) 2.0.2 module for mxBB allows remote attackers to include arbitrary files via a ..
network
low complexity
mxbb
critical
10.0