This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Punbb First view 2006-11-06
Product Punbb Last view 2011-10-02
Version * Type Application
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:punbb:punbb

Activity : Overall

Related : CVE

  Date Alert Description
4.3 2011-10-02 CVE-2011-3371

Multiple cross-site scripting (XSS) vulnerabilities in include/functions.php in PunBB before 1.3.6 allow remote attackers to inject arbitrary web script or HTML via the (1) id, (2) form_sent, (3) csrf_token, (4) req_confirm, or (5) delete parameter to delete.php, the (6) id, (7) form_sent, (8) csrf_token, (9) req_message, or (10) submit parameter to edit.php, the (11) action, (12) form_sent, (13) csrf_token, (14) req_email, or (15) request_pass parameter to login.php, the (16) email, (17) form_sent, (18) redirect_url, (19) csrf_token, (20) req_subject, (21) req_message, or (22) submit parameter to misc.php, the (23) action, (24) id, (25) form_sent, (26) csrf_token, (27) req_old_password, (28) req_new_password1, (29) req_new_password2, or (30) update parameter to profile.php, or the (31) action, (32) form_sent, (33) csrf_token, (34) req_username, (35) req_password1, (36) req_password2, (37) req_email1, (38) timezone, or (39) register parameter to register.php.

4.3 2010-06-15 CVE-2009-4894

Multiple cross-site scripting (XSS) vulnerabilities in profile.php in PunBB before 1.3.4 allow remote attackers to inject arbitrary web script or HTML via the (1) password or (2) e-mail.

6.8 2009-09-17 CVE-2008-7241

Cross-site request forgery (CSRF) vulnerability in PunBB before 1.2.17 allows remote attackers to hijack the authentication of unspecified users for requests related to a logout, probably a forced logout.

4.3 2008-12-11 CVE-2008-5435

Cross-site scripting (XSS) vulnerability in moderate.php in PunBB before 1.3.1 allows remote attackers to inject arbitrary web script or HTML via a topic subject.

4.3 2008-09-10 CVE-2008-3968

Cross-site scripting (XSS) vulnerability in userlist.php in PunBB before 1.2.20 allows remote attackers to inject arbitrary web script or HTML via the p parameter.

4.3 2008-07-27 CVE-2008-3336

Multiple cross-site scripting (XSS) vulnerabilities in PunBB before 1.2.19 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors in (1) include/parser.php and (2) moderate.php.

10 2008-07-27 CVE-2008-3335

Unspecified vulnerability in PunBB before 1.2.19 allows remote attackers to inject arbitrary SMTP commands via unknown vectors.

6.8 2007-04-25 CVE-2007-2236

footer.php in PunBB 1.2.14 and earlier allows remote attackers to include local files in include/user/ via a cross-site scripting (XSS) attack, or via the pun_include tag, as demonstrated by use of admin_options.php to execute PHP code from an uploaded avatar file.

4.3 2007-04-25 CVE-2007-2235

Multiple cross-site scripting (XSS) vulnerabilities in PunBB 1.2.14 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) Referer HTTP header to misc.php or the (2) category name when deleting a category in admin_categories.php.

7.5 2007-04-25 CVE-2007-2234

include/common.php in PunBB 1.2.14 and earlier does not properly handle a disabled ini_get function when checking the register_globals setting, which allows remote attackers to register global parameters, as demonstrated by an SQL injection attack on the search_id parameter to search.php.

2.1 2006-11-06 CVE-2006-5738

Multiple SQL injection vulnerabilities in PunBB before 1.2.14 allow remote authenticated administrators to execute arbitrary SQL commands via unspecified vectors.

5.1 2006-11-06 CVE-2006-5736

SQL injection vulnerability in search.php in PunBB before 1.2.14, when the PHP installation is vulnerable to CVE-2006-3017, allows remote attackers to execute arbitrary SQL commands via the result_list array parameter, which is not initialized.

7.5 2006-11-06 CVE-2006-5735

Directory traversal vulnerability in include/common.php in PunBB before 1.2.14 allows remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in the language parameter, related to register.php storing a language value in the users table.

CWE : Common Weakness Enumeration

%idName
71% (5) CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting')
14% (1) CWE-352 Cross-Site Request Forgery (CSRF)
14% (1) CWE-94 Failure to Control Generation of Code ('Code Injection')

Open Source Vulnerability Database (OSVDB)

id Description
75597 PunBB Multiple Script URI XSS
65499 PunBB profile.php Multiple Parameter XSS
50680 PunBB moderate.php Topic Subject XSS
48685 PunBB Logout URL Unspecified CSRF
47999 PunBB userlist.php p Parameter XSS
47170 PunBB Unspecified Arbitrary SMTP Command Injection
47169 PunBB include/parser.php Unspecified Parameter XSS
42640 PunBB admin_categories.php Category Name XSS
42639 PunBB misc.php Referer HTTP Header XSS
42638 PunBB footer.php include/user/ Local File Inclusion
42637 PunBB include/common.php Global Parameter Registration Security Bypass
30135 PunBB Unspecified Admin SQL Injection
30133 PunBB search.php result_list array Parameter SQL Injection
30132 PunBB include/common.php language Parameter Local File Inclusion

OpenVAS Exploits

id Description
2008-10-24 Name : PunBB language Paramater Local File Include Vulnerability
File : nvt/punbb_register_lfi.nasl

Nessus® Vulnerability Scanner

id Description
2006-11-03 Name: The remote web server contains a PHP script that is affected by a local file ...
File: punbb_register_lfi.nasl - Type: ACT_DESTRUCTIVE_ATTACK