Vulnerabilities > Ubbcentral > UBB Threads > 7.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2012-09-23 | CVE-2012-5104 | Cross-Site Scripting vulnerability in Ubbcentral Ubb.Threads Cross-site scripting (XSS) vulnerability in forums/ubbthreads.php in UBB.threads 7.5.6 and earlier allows remote attackers to inject arbitrary web script or HTML via the Loginname parameter. | 4.3 |
2009-08-13 | CVE-2008-6970 | SQL Injection vulnerability in Ubbcentral Ubb.Threads SQL injection vulnerability in dosearch.inc.php in UBB.threads 7.3.1 and earlier allows remote attackers to execute arbitrary SQL commands via the Forum[] array parameter. | 7.5 |