CVE Tools

sir

Unclassifiedunknown

17

Cumulative CVEs

6

Monthly snapshots

#71

Peak rank

Top products

Latest CVEs

The 15 most recently published vulnerabilities affecting sir.

CVE-2025-61464gnuboard gnuboard4 v4.36.04 and before is vulnerable to Second-order SQL Injection via the search_table in bbs/search.php.6.5Oct 23, 2025
CVE-2025-60859Cross Site Scripting (XSS) vulnerability in Gnuboard 5.6.15 allows authenticated attackers to execute arbitrary code via crafted c_id parameter in bbs/view_comment.php.6.1Oct 23, 2025
CVE-2025-7786Gnuboard g6 Post Reply qa cross site scripting3.5Jul 18, 2025
CVE-2024-37658An open redirect vulnerability in gnuboard5 v.5.5.16 allows a remote attacker to obtain sensitive information via the bbs/member_confirm.php.6.1Jul 7, 2025
CVE-2024-37657An open redirect vulnerability in gnuboard5 v.5.5.16 allows a remote attacker to obtain sensitive information via thebbs/login.php component.6.1Jul 7, 2025
CVE-2024-37656An open redirect vulnerability in gnuboard5 v.5.5.16 allows a remote attacker to obtain sensitive information via the insufficient URL parameter verification in bbs/logout.php.6.1Jul 7, 2025
CVE-2024-39097There is an Open Redirect vulnerability in Gnuboard v6.0.4 and below via the `url` parameter in login path.6.1Aug 26, 2024
CVE-2024-41475Gnuboard g6 6.0.7 is vulnerable to Session hijacking due to a CORS misconfiguration.8.8Aug 12, 2024
CVE-2024-24157Gnuboard g6 / https://github.com/gnuboard/g6 commit c2cc1f5069e00491ea48618d957332d90f6d40e4 is vulnerable to Cross Site Scripting (XSS) via board.py.6.1May 9, 2024
CVE-2024-24156Cross Site Scripting (XSS) vulnerability in Gnuboard g6 before Github commit 58c737a263ac0c523592fd87ff71b9e3c07d7cf5, allows remote attackers execute arbitrary code via the wr_content parameter.6.1Mar 16, 2024
CVE-2022-44216Gnuboard 5.5.4 and 5.5.5 is vulnerable to Insecure Permissions. An attacker can change password of all users without knowing victim's original password.7.5Feb 20, 2023
CVE-2021-4293gnuboard youngcart5 menu_list_update.php cross site scripting3.5Dec 28, 2022
CVE-2022-3963gnuboard5 FAQ Key ID faq.php cross site scripting3.5Nov 12, 2022
CVE-2022-30050Gnuboard 5.55 and 5.56 is vulnerable to Cross Site Scripting (XSS) via bbs/member_confirm.php.6.1May 16, 2022
CVE-2022-1252Use of a Broken or Risky Cryptographic Algorithm in gnuboard/gnuboard58.2Apr 11, 2022