Shodan
Vulnerabilities
Vulnerable Software
Stewart Howe:  >> Celerbb  >> 0.0.2  Security Vulnerabilities
CVE-2009-0851
Multiple SQL injection vulnerabilities in CelerBB 0.0.2, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) viewforum.php and (2) viewtopic.php.
CVSS Score
6.8
EPSS Score
0.006
Published
2009-03-09
CVE-2009-0852
showme.php in CelerBB 0.0.2 allows remote attackers to obtain "reserved information" via the user parameter.
CVSS Score
5.0
EPSS Score
0.06
Published
2009-03-09
CVE-2009-0853
login.php in CelerBB 0.0.2, when magic_quotes_gpc is disabled, allows remote attackers to bypass authentication and obtain administrative access via special characters in the Username parameter, as demonstrated by an admin'# parameter value.
CVSS Score
6.8
EPSS Score
0.034
Published
2009-03-09


Products
Pricing
Contact Us

Shodan ® - All rights reserved