Seaofglass

#21112of 53,633
11.8Total CVSS
Vulnerabilities · 2
Medium
1
High
1
PT-2008-1807
7.5
2008-01-09
Evilboard · Evilboard · CVE-2008-0154
**Name of the Vulnerable Software and Affected Versions** EvilBoard version 0.1a (Alpha) **Description** The issue allows remote attackers to execute arbitrary SQL commands via the `c` parameter in the "index.php" file. **Recommendations** For EvilBoard version 0.1a (Alpha), consider restricting access to the `c` parameter in the "index.php" file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2008-1808
4.3
2008-01-09
Evilboard · Evilboard · CVE-2008-0155
**Name of the Vulnerable Software and Affected Versions** EvilBoard version 0.1a (Alpha) **Description** A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML. This is achieved via the `c` parameter in the "index.php" file. **Recommendations** For EvilBoard version 0.1a (Alpha), consider restricting access to the `c` parameter in the "index.php" file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.