Approved changes feed: RSS · Atom
cpe:2.3:a:6kbbs:6kbbs:8.0:*:*:*:*:*:*:*
part: a version: 8.0 update: *
| Vendor | 6Kbbs (6c693351-49fc-5553-9500-01305369f2af) |
|---|---|
| Product | 6Kbbs (c81b8ef3-513d-5ac2-9f0e-0a87d5aa11a8) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:code.google/6kbbs |
purl2cpe | 2026-06-01 10:12:09.238676 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2015-9292 |
vulnerable | 2026-06-03 14:35:19.578173 |
Details available
6kbbs 7.1 and 8.0 allows CSRF via portalchannel_ajax.php (id or code parameter) or admin.php (fileids parameter).
Published: 2019-08-08T20:01:42.000Z
Updated: 2024-08-06T08:43:42.416Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2010-4812 |
vulnerable | 2026-06-03 14:30:44.138834 |
Details available
Multiple SQL injection vulnerabilities in 6kbbs 8.0 build 20100901 allow remote attackers to execute arbitrary SQL commands via the (1) tids[] parameter to ajaxadmin.php and the (2) msgids[] parameter to ajaxmember.php.
Published: 2011-07-08T22:00:00.000Z
Updated: 2024-08-07T04:02:29.812Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2010-4811 |
vulnerable | 2026-06-03 14:30:44.138420 |
Details available
Multiple cross-site scripting (XSS) vulnerabilities in ajaxmember.php in 6kbbs 8.0 build 20100901 allow remote attackers to inject arbitrary web script or HTML via the (1) user[msn], (2) user[email], and (3) user[phone] parameters in a modifyDetails action.
Published: 2011-07-08T22:00:00.000Z
Updated: 2024-08-07T04:02:29.634Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.