Shodan
Vulnerabilities
Vulnerable Software
Unclassified Newsboard:  >> Unclassified Newsboard  >> 1.5.3  Security Vulnerabilities
CVE-2006-2405
Directory traversal vulnerability in unb_lib/abbc.conf.php in Unclassified NewsBoard (UNB) 1.6.1 patch 1 and earlier, when register_globals is enabled, allows remote attackers to include arbitrary files via .. (dot dot) sequences and a trailing null byte (%00) in the ABBC[Config][smileset] parameter to unb_lib/abbc.css.php.
CVSS Score
6.8
EPSS Score
0.156
Published
2006-05-16
CVE-2005-2855
Cross-site scripting (XSS) vulnerability in Unclassified NewsBoard 1.5.3 allows remote attackers to inject arbitrary web script or HTML via the description field.
CVSS Score
4.3
EPSS Score
0.076
Published
2005-09-08


Products
Pricing
Contact Us

Shodan ® - All rights reserved