Gnuboard CVEs and Security Vulnerabilities - OpenCVE

Filtered by vendor Gnuboard Subscriptions

Search

Switch to Advanced Search (Beta)

Total 5 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2024-39097	2 Gnuboard, Sir	2 Gnuboard6, Gnuboard	2025-10-31	6.1 Medium
There is an Open Redirect vulnerability in Gnuboard v6.0.4 and below via the `url` parameter in login path.
CVE-2025-61464	2 Gnuboard, Sir	2 Gnuboard4, Gnuboard	2025-10-30	6.5 Medium
gnuboard gnuboard4 v4.36.04 and before is vulnerable to Second-order SQL Injection via the search_table in bbs/search.php.
CVE-2025-60859	2 Gnuboard, Sir	2 Gnuboard5, Gnuboard	2025-10-28	6.1 Medium
Cross Site Scripting (XSS) vulnerability in Gnuboard 5.6.15 allows authenticated attackers to execute arbitrary code via crafted c_id parameter in bbs/view_comment.php.
CVE-2021-3831	1 Gnuboard	1 Gnuboard5	2024-11-21	6.1 Medium
gnuboard5 is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2024-41475	2 Gnuboard, Sir	2 Gnuboard6, Gnuboard	2024-09-18	9.8 Critical
Gnuboard g6 6.0.7 is vulnerable to Session hijacking due to a CORS misconfiguration.

Page 1 of 1.