VYPR
Vendor

Maxboard

Products
1
CVEs
3
Across products
3
Status
Private

Products

1

Recent CVEs

3
  • CVE-2021-26634CriJun 2, 2022
    risk 0.64cvss 9.8epss 0.01

    SQL injection and file upload attacks are possible due to insufficient validation of input values in some parameters and variables of files compromising Maxboard, which may lead to arbitrary code execution or privilege escalation. Attackers can use these vulnerabilities to…

  • CVE-2021-26636HigJun 23, 2022
    risk 0.57cvss 8.8epss 0.01

    Stored XSS and SQL injection vulnerability in MaxBoard could lead to occur Remote Code Execution, which could lead to information exposure and privilege escalation.

  • CVE-2021-26633HigJun 2, 2022
    risk 0.49cvss 7.5epss 0.01

    SQL injection and Local File Inclusion (LFI) vulnerabilities in MaxBoard can cause information leakage and privilege escalation. This vulnerabilities can be exploited by manipulating a variable with a desired value and inserting and arbitrary file.