Vulnerabilities > Sonicbb

DATE	CVE	VULNERABILITY TITLE	RISK
2007-05-14	CVE-2007-1903	Cross-Site Scripting vulnerability in Sonicbb 1.0 Cross-site scripting (XSS) vulnerability in search.php in SonicBB 1.0 allows remote attackers to inject arbitrary web script or HTML via the part parameter. network high complexity sonicbb	2.6
2007-05-14	CVE-2007-1902	SQL Injection vulnerability in Sonicbb 1.0 Multiple SQL injection vulnerabilities in SonicBB 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) part and (2) by parameters to (a) search.php, or the (2) id parameter to (b) viewforum.php. network sonicbb	6.8
2007-05-14	CVE-2007-1901	Information Disclosure vulnerability in Sonicbb 1.0 SonicBB 1.0 allows remote attackers to obtain sensitive information via the (1) by[] parameter to search.php, (2) p[] parameter to viewforum.php, and the (3) id parameter to (a) viewforum.php or (b) members.php, which reveal the installation path in the resulting error message. network sonicbb	4.3

Vulnerabilities > Sonicbb {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Sonicbb"}]}