Vulnerabilities (CVE)

Filtered by vendor Ovbb Subscribe
Filtered by product Ovbb
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2005-3918 1 Ovbb 1 Ovbb 2024-08-08 7.5 HIGH N/A
Multiple SQL injection vulnerabilities in OvBB 0.08a allow remote attackers to execute arbitrary SQL commands via the (1) threadid parameter to thread.php and (2) userid parameter to profile.php. NOTE: the vendor disputes these issues, saying "these reports are completely unsubstantial.