Vulnerabilities (CVE)

Filtered by vendor B1g Subscribe
Filtered by product B1gbb
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2007-3590 1 B1g 1 B1gbb 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in visitenkarte.php in b1gBB 2.24.0 allows remote attackers to inject arbitrary web script or HTML via the user parameter.
CVE-2007-3589 1 B1g 1 B1gbb 2024-11-21 7.5 HIGH N/A
Multiple SQL injection vulnerabilities in b1gbb 2.24.0 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) showthread.php or (2) showboard.php.
CVE-2007-3401 1 B1g 1 B1gbb 2024-11-21 7.5 HIGH N/A
PHP remote file inclusion vulnerability in footer.inc.php in B1G b1gBB 2.24 allows remote attackers to execute arbitrary PHP code via a URL in the tfooter parameter.