Vulnerabilities (CVE)

Filtered by vendor Elite Bulletin Board Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2007-3592 1 Elite Bulletin Board 1 Elite Bulletin Board 2024-02-28 6.5 MEDIUM N/A
PM.php in Elite Bulletin Board before 1.0.10 allows remote authenticated users to delete arbitrary PM messages and conduct other attacks via modified id fields.
CVE-2007-3591 1 Elite Bulletin Board 1 Elite Bulletin Board 2024-02-28 5.0 MEDIUM N/A
Unspecified vulnerability in Profile.php in Elite Bulletin Board before 1.0.10 allows remote attackers to modify profile information via unspecified vectors related to "a remote form," probably related to direct requests and missing authorization checks.