Nbbn

**Name of the Vulnerable Software and Affected Versions** WoltLab Burning Board Lite (wBB) version 2 Beta 1 **Description** A cross-site request forgery (CSRF) issue exists, allowing remote attackers to perform actions as other users. This can be exploited to delete threads via the ThreadDelete action. **Recommendations** For version 2 Beta 1, consider implementing CSRF protection mechanisms to prevent unauthorized actions, such as validating request tokens or using same-site cookies to restrict request origins. As a temporary workaround, restrict access to the ThreadDelete action to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Sniplets plugin for WordPress versions 1.1.2 and 1.2.2 **Description** The issue allows remote attackers to execute arbitrary PHP code. This is achieved via the `text` parameter in the modules/execute.php file. **Recommendations** For Sniplets plugin for WordPress version 1.1.2, update to a version that fixes this issue. For Sniplets plugin for WordPress version 1.2.2, update to a version that fixes this issue. As a temporary workaround, consider restricting access to the modules/execute.php file until a patch is available. Avoid using the `text` parameter in the affected module until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Sniplets plugin for WordPress versions 1.1.2 and 1.2.2 **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `libpath` parameter in the modules/syntax highlight.php file. **Recommendations** For Sniplets plugin for WordPress version 1.1.2, avoid using the `libpath` parameter in the affected module until the issue is resolved. For Sniplets plugin for WordPress version 1.2.2, avoid using the `libpath` parameter in the affected module until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Sniplets plugin for WordPress versions 1.1.2 and 1.2.2 **Description** The issue allows remote attackers to inject arbitrary web script or HTML. This can be achieved via several parameters, including the `text` parameter to endpoints such as "warning.php", "notice.php", and "inset.php" in the "view/sniplets/" directory, and possibly "modules/execute.php". Additionally, the `url` parameter to "view/admin/submenu.php" and the `page` parameter to "view/admin/pager.php" are vulnerable. **Recommendations** For Sniplets plugin for WordPress version 1.1.2, update to a version that fixes the XSS vulnerabilities. For Sniplets plugin for WordPress version 1.2.2, update to a version that fixes the XSS vulnerabilities. As a temporary workaround, consider restricting access to the vulnerable endpoints, such as "warning.php", "notice.php", "inset.php", "modules/execute.php", "view/admin/submenu.php", and "view/admin/pager.php", until a patch is available. Avoid using the `text`, `url`, and `page` parameters in the affected endpoints until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** WoltLab Burning Board version 3.0.3 PL 1 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `sortOrder` parameter to the "PMList" page, which is accessible through the "index.php" file. **Recommendations** For version 3.0.3 PL 1, consider restricting access to the `sortOrder` parameter in the "PMList" page until a patch is available. As a temporary workaround, avoid using the `sortOrder` parameter in the affected page to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** DMSGuestbook version 1.7.0 **Description** The issue allows remote attackers to inject arbitrary web script or HTML. This can be achieved via the "file" parameter to "wp-admin/admin.php", the "messagefield" parameter in the guestbook page, or the "title" parameter in the message area. **Recommendations** For DMSGuestbook version 1.7.0, consider disabling the plugin until a patch is available to prevent exploitation. Restrict access to the "wp-admin/admin.php" endpoint, and avoid using the `file`, `messagefield`, and `title` parameters in the affected areas until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** DMSGuestbook plugin for WordPress versions 1.7.0 through 1.8.0 **Description** A directory traversal issue exists, allowing remote authenticated users to read arbitrary files. This is achieved by using a .. (dot dot) in the `folder` and `file` parameters. **Recommendations** For DMSGuestbook plugin for WordPress versions 1.7.0 through 1.8.0, consider restricting access to the `admin.php` file in the `wp-admin` directory until a patch is available. As a temporary workaround, avoid using the `folder` and `file` parameters in the affected API endpoint.

**Name of the Vulnerable Software and Affected Versions** DMSGuestbook version 1.7.0 **Description** A SQL injection issue exists in the administration panel of the DMSGuestbook plugin for WordPress, allowing remote authenticated administrators to execute arbitrary SQL commands. It is unclear whether this issue crosses privilege boundaries. **Recommendations** For version 1.7.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** webSPELL version 4.01.02 **Description** A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML via the `sort` parameter in a "whoisonline" action. This could potentially lead to unauthorized actions on the affected web application. **Recommendations** For webSPELL version 4.01.02, consider restricting access to the `sort` parameter in the "whoisonline" action until a patch is available. As a temporary workaround, avoid using the `sort` parameter in the affected API endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** phpBB version 2.0.22 **Description** A cross-site request forgery issue allows remote attackers to delete private messages as arbitrary users via a deleteall action. **Recommendations** For phpBB version 2.0.22, update to a version that includes a fix for this issue to prevent exploitation.

**Name of the Vulnerable Software and Affected Versions** Woltlab Burning Board (wBB) version 2.3.6 PL2 **Description** A cross-site request forgery (CSRF) issue exists, allowing remote attackers to perform actions such as deleting threads, potentially impersonating moderators or administrators. **Recommendations** For version 2.3.6 PL2, consider implementing validation for requests to prevent unauthorized actions, such as verifying the origin of the request to prevent CSRF attacks. As a temporary workaround, restrict access to the modcp.php file, specifically the thread del action, to minimize the risk of exploitation.