Ideal Science » Idealbb » 1.5.3 : Security Vulnerabilities, CVEs, CVSS score >= 7
Multiple SQL injection vulnerabilities in Ideal Science Ideal BB 1.5.4a and earlier allow remote attackers to execute arbitrary SQL commands via multiple unspecified vectors related to stored procedure calls. NOTE: due to lack of details from the researcher, it is not clear whether this overlaps CVE-2004-2209.
Max CVSS
7.5
EPSS Score
0.62%
Published
2006-05-12
Updated
2018-10-18
Incomplete blacklist vulnerability in Ideal Science Ideal BB 1.5.4a and earlier allows remote attackers to upload and execute an ASP script via a ".asa" file, which bypasses the check for the ".asp" extension but is executable on the server.
Max CVSS
7.5
EPSS Score
6.34%
Published
2006-05-12
Updated
2018-10-18
SQL injection vulnerability in Ideal Science IdealBB 1.4.9 through 1.5.3 allows remote attackers to execute arbitrary SQL commands via unknown vectors.
Max CVSS
7.5
EPSS Score
0.32%
Published
2004-12-31
Updated
2008-09-05
3 vulnerabilities found