Vulnerabilities > Yapbb
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-03-06 | CVE-2009-0768 | SQL Injection vulnerability in Yapbb 1.1/1.2 SQL injection vulnerability in forumhop.php in YapBB 1.2 and earlier allows remote attackers to execute arbitrary SQL commands via the forumID parameter in a next action. | 7.5 |
| 2009-01-22 | CVE-2008-5947 | Code Injection vulnerability in Yapbb 1.2 PHP remote file inclusion vulnerability in include/class_yapbbcooker.php in YapBB 1.2.Beta 2 allows remote attackers to execute arbitrary PHP code via a URL in the cfgIncludeDirectory parameter. | 6.8 |
| 2006-12-18 | CVE-2006-6633 | Remote File Include vulnerability in Yapbb 1.1/1.2 PHP remote file inclusion vulnerability in include/yapbb_session.php in YapBB 1.2 Beta2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[include_Bit] parameter. | 7.5 |
| 2006-05-19 | CVE-2006-2486 | SQL Injection vulnerability in Yapbb 1.1/1.2/1.2Beta2 SQL injection vulnerability in find.php in YapBB 1.2 Beta2 and earlier allows remote attackers to execute arbitrary SQL commands via the userID parameter. | 6.4 |