vubb 相關的公開 CVE 漏洞與安全風險資訊,提供 CVSS、EPSS、公開時間與漏洞情報資料,協助評估潛在風險與修補優先順序。
| CVE | 摘要 | 來源 | 最高 CVSS | EPSS % | 公開時間 | 更新時間 |
|---|---|---|---|---|---|---|
| CVE-2006-6231 | vuBB 0.2.1 and earlier allows remote attackers to obtain sensitive information via a direct request to includes/vubb.php, which leaks the path in an error message. | [email protected] | 5.0 | 0.46% | 2006-12-02 | 2026-04-23 |
| CVE-2006-6230 | SQL injection vulnerability in vuBB 0.2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the user parameter in a register action to index.php, a different vulnerability than CVE-2006-0962. | [email protected] | 7.5 | 0.60% | 2006-12-02 | 2026-04-23 |
| CVE-2006-0962 | SQL injection vulnerability in vuBB 0.2 allows remote attackers to execute arbitrary SQL commands via the pass parameter in a cookie. | [email protected] | 7.5 | 0.83% | 2006-03-02 | 2026-04-16 |
| CVE-2005-4613 | Cross-site scripting (XSS) vulnerability in VUBB alpha rc1 allows remote attackers to inject arbitrary web script or HTML via unspecified fields in the user edit profile. | [email protected] | 4.3 | 0.34% | 2005-12-31 | 2026-04-16 |
| CVE-2005-4612 | Multiple SQL injection vulnerabilities in VUBB alpha rc1 allow remote attackers to execute arbitrary SQL commands via the (1) f parameter to viewforum.php, (2) t parameter to viewtopic.php, and (3) view parameter to usercp.php. | [email protected] | 7.5 | 0.77% | 2005-12-31 | 2026-04-16 |
| CVE-2005-3513 | index.php in VUBB alpha rc1 allows remote attackers to obtain the installation path of the application via a viewforum action with the f parameter set to a single quote ('). | [email protected] | 5.0 | 0.35% | 2005-11-06 | 2026-04-16 |
| CVE-2005-3512 | Cross-site scripting (XSS) vulnerability in index.php in VUBB alpha rc1 allows remote attackers to inject arbitrary web script or HTML via the t parameter in a newreply action. | [email protected] | 4.3 | 0.42% | 2005-11-06 | 2026-04-16 |