1.0.0

DATE	CVE	VULNERABILITY TITLE	RISK
2007-02-07	CVE-2007-0812	SQL Injection vulnerability in Woltlab Burning Board Lite Pms.PHP SQL injection vulnerability in pms.php in Woltlab Burning Board (wBB) Lite 1.0.2pl3e and earlier allows remote authenticated users to execute arbitrary SQL commands via the pmid[0] parameter. network low complexity woltlab	7.5
2005-05-02	CVE-2005-0216	Cross-Site Scripting vulnerability in WoltLab Burning Board Lite Form Mail Script Cross-site scripting (XSS) vulnerability in formmail.php in Woltlab Burning Board Lite 1.0.0, 1.0.1e, and possibly other versions, allows remote attackers to inject arbitrary web script and HTML via the userid parameter. network woltlab	4.3