Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-61464

gnuboard gnuboard4 v4.36.04 and before is vulnerable to Second-order SQL Injection via the search_table in bbs/search.php.

Published

2025-10-23T18:16:40.167

Last Modified

2025-10-30T16:46:47.150

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 6.5 (MEDIUM)

Weaknesses

Type: Secondary
CWE-89

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	sir	gnuboard	≤ 4.36.04	Yes

References

https://github.com/gnuboard/gnuboard4/issues/1 Exploit, Issue Tracking, Vendor Advisory ([email protected])
https://github.com/gnuboard/gnuboard4/issues/1#issue-3421008974 Exploit, Issue Tracking, Vendor Advisory ([email protected])