Boastmachine : Security Vulnerabilities, CVEs, CVSS score >= 7
SQL injection vulnerability in mail.php in boastMachine (aka bMachine) 3.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
Max CVSS
7.5
EPSS Score
90.50%
Published
2008-01-23
Updated
2018-10-15
users.ini.php in BoastMachine 3.0 does not properly restrict the types of files that can be uploaded, which allows remote attackers to execute arbitrary code.
Max CVSS
7.5
EPSS Score
0.56%
Published
2005-05-11
Updated
2008-09-05
2 vulnerabilities found