Newsboard

newsboard

2 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Unclassified Newsboard

unclassified_newsboard

2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2009-1947 1Newsboard 1Unclassified Newsboard Apr 23, 2026 Jun 5, 2009 N/A· v4 N/A· v3 7.5 HIGH· v2 SQL injection vulnerability in the UnbDbEncode function in unb_lib/database.lib.php in Unclassified NewsBoard (UNB) 1.6.4 allows remote attackers to execute arbitrary SQL commands via the Query parameter in a search acti...Show more SQL injection vulnerability in the UnbDbEncode function in unb_lib/database.lib.php in Unclassified NewsBoard (UNB) 1.6.4 allows remote attackers to execute arbitrary SQL commands via the Query parameter in a search action to forum.php, a different vector than CVE-2005-3686.Show less
CVE-2005-3686 1Newsboard 1Unclassified Newsboard Apr 16, 2026 Nov 19, 2005 N/A· v4 N/A· v3 7.5 HIGH· v2 SQL injection vulnerability in search.inc.php in Unclassified NewsBoard before 1.5.3 Patch 4 allows remote attackers to execute arbitrary SQL commands via the (1) DateFrom or (2) DateUntil parameter to forum.php.

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2009-1947

1Newsboard

1Unclassified Newsboard

Apr 23, 2026

Jun 5, 2009

N/A· v4

N/A· v3

7.5 HIGH· v2

SQL injection vulnerability in the UnbDbEncode function in unb_lib/database.lib.php in Unclassified NewsBoard (UNB) 1.6.4 allows remote attackers to execute arbitrary SQL commands via the Query parameter in a search acti...Show more

CVE-2005-3686

1Newsboard

1Unclassified Newsboard

Apr 16, 2026

Nov 19, 2005

N/A· v4

N/A· v3

7.5 HIGH· v2

SQL injection vulnerability in search.inc.php in Unclassified NewsBoard before 1.5.3 Patch 4 allows remote attackers to execute arbitrary SQL commands via the (1) DateFrom or (2) DateUntil parameter to forum.php.