Vulnerabilities > Usebb

DATE CVE VULNERABILITY TITLE RISK
2020-01-27 CVE-2020-8088 Unspecified vulnerability in Usebb 1.0.12
panel_login.php in UseBB 1.0.12 allows type juggling for login bypass because != is used instead of !== for password hashes, which mishandles hashes that begin with 0e followed by exclusively numerical characters.
network
low complexity
usebb
critical
9.8
2020-01-22 CVE-2011-3612 Cross-Site Request Forgery (CSRF) vulnerability in Usebb
Cross-Site Request Forgery (CSRF) vulnerability exists in panel.php in UseBB before 1.0.12.
network
low complexity
usebb CWE-352
8.8
2020-01-22 CVE-2011-3611 Improper Input Validation vulnerability in Usebb
A File Inclusion vulnerability exists in act parameter to admin.php in UseBB before 1.0.12.
network
low complexity
usebb CWE-20
7.2