Vulnerabilities > XMB Forum > XMB > 1.9.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-08-16 | CVE-2005-2575 | Unspecified vulnerability in XMB Forum XMB 1.9.1 SQL injection vulnerability in u2u.inc.php in XMB Forum 1.9.1 allows remote attackers to execute arbitrary SQL commands via certain values that are inserted into the $in variable. | 7.5 |
2005-08-16 | CVE-2005-2574 | Unspecified vulnerability in XMB Forum XMB 1.9.1 xmb.php in XMB Forum 1.9.1 extracts and defines all provided variables, which allows remote attackers to modify arbitrary server variables such as _SERVER[REMOTE_ADDR]. | 5.0 |
2005-05-02 | CVE-2005-0885 | Unspecified vulnerability in XMB Forum XMB 1.9.1 Multiple cross-site scripting (XSS) vulnerabilities in XMB Forum 1.9.1 allow remote attackers to inject arbitrary web script or HTML via the (1) Mood or (2) "Send To" fields. network xmb-forum | 4.3 |