Yapbb : Security Vulnerabilities, CVEs,
SQL injection vulnerability in forumhop.php in YapBB 1.2 and earlier allows remote attackers to execute arbitrary SQL commands via the forumID parameter in a next action.
Max CVSS
7.5
EPSS Score
0.07%
Published
2009-03-06
Updated
2017-09-29
PHP remote file inclusion vulnerability in include/class_yapbbcooker.php in YapBB 1.2.Beta 2 allows remote attackers to execute arbitrary PHP code via a URL in the cfgIncludeDirectory parameter.
Max CVSS
6.8
EPSS Score
2.25%
Published
2009-01-22
Updated
2017-08-08
PHP remote file inclusion vulnerability in include/yapbb_session.php in YapBB 1.2 Beta2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[include_Bit] parameter.
Max CVSS
7.5
EPSS Score
4.76%
Published
2006-12-18
Updated
2017-10-19
SQL injection vulnerability in find.php in YapBB 1.2 Beta2 and earlier allows remote attackers to execute arbitrary SQL commands via the userID parameter.
Max CVSS
6.4
EPSS Score
0.39%
Published
2006-05-19
Updated
2018-10-18
4 vulnerabilities found