Vulnerabilities (CVE)

Filtered by vendor Jaxultrabb Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-2966 1 Jaxultrabb 1 Jaxultrabb 2024-11-21 7.5 HIGH N/A
Directory traversal vulnerability in viewprofile.php in JaxUltraBB 2.0 and earlier allows remote attackers to read arbitrary local files via a .. (dot dot) in the user parameter. party information.
CVE-2006-5511 1 Jaxultrabb 1 Jaxultrabb 2024-11-21 2.6 LOW N/A
Direct static code injection vulnerability in delete.php in JaxUltraBB (JUBB) 2.0, when register_globals is enabled, allows remote attackers to inject arbitrary web script, HTML, or PHP via the contents parameter, whose value is prepended to the file specified by the forum parameter.