汇总 boastmachine 相关全部产品的 CVE 与安全漏洞情报,包括 CVSS、EPSS、公开时间与漏洞情报数据。
常见弱点模式包括 SQL 注入与路径处理缺陷,在 生产负载与软件部署 使用场景中可能带来 文件覆盖与数据泄露 等风险。
相关漏洞数据主要来源于公开漏洞披露与安全公告,可用于评估历史漏洞暴露面与修复优先级。
| CVE | 摘要 | 来源 | 最高 CVSS | EPSS % | 公开时间 | 更新时间 |
|---|---|---|---|---|---|---|
| CVE-2008-0422 | SQL injection vulnerability in mail.php in boastMachine (aka bMachine) 3.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. | [email protected] | 7.5 | 3.27% | 2008-01-23 | 2026-06-16 |
| CVE-2007-5417 | Directory traversal vulnerability in index.php in boastMachine (aka bMachine) 2.8 allows remote attackers to read arbitrary files via a .. (dot dot) in the id parameter. | [email protected] | 5.0 | 3.42% | 2007-10-12 | 2026-06-16 |
| CVE-2007-2932 | Cross-site scripting (XSS) vulnerability in index.php in BoastMachine allows remote attackers to inject arbitrary web script or HTML via the blog parameter in a content search action. | [email protected] | 4.3 | 4.49% | 2007-05-30 | 2026-06-16 |
| CVE-2007-2860 | user.php in BoastMachine 3.0 platinum allows remote authenticated users to gain privileges via a modified id parameter, as demonstrated by an edit_post action. | [email protected] | 6.5 | 1.14% | 2007-05-24 | 2026-06-16 |
| CVE-2006-2491 | Cross-site scripting (XSS) vulnerability in (1) index.php and (2) bmc/admin.php in BoastMachine (bMachine) 3.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the query string, which is not properly filtered when it is accessed using the $_SERVER["PHP_SELF"] variable. | [email protected] | 6.8 | 2.75% | 2006-05-19 | 2026-06-16 |
| CVE-2006-0131 | boastMachine 3.1 allows remote attackers to obtain sensitive information via a direct request to (1) footer.php and (2) side_menu.php, which reveals the path in an error message. | [email protected] | 5.0 | 1.18% | 2006-01-09 | 2026-06-16 |
| CVE-2005-1580 | users.ini.php in BoastMachine 3.0 does not properly restrict the types of files that can be uploaded, which allows remote attackers to execute arbitrary code. | [email protected] | 7.5 | 2.69% | 2005-05-11 | 2026-06-16 |