Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
comscripts cs-forum vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2006-3169
Multiple cross-site scripting (XSS) vulnerabilities in CS-Forum 0.81 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) msg_result and (2) rep_titre parameters in (a) read.php; and the (3) id and (4) parent parameters and (5) CSF...
Comscripts Cs-forum
5
CVSSv2
CVE-2006-3171
CRLF injection vulnerability in CS-Forum prior to 0.82 allows remote malicious users to inject arbitrary email headers via a newline character in the email parameter to ajouter.php.
Comscripts Cs-forum
7.5
CVSSv2
CVE-2006-3168
SQL injection vulnerability in CS-Forum prior to 0.82 allows remote malicious users to execute arbitrary SQL commands via the (1) id and (2) debut parameters in (a) read.php, and the (3) search and (4) debut parameters in (b) index.php.
Comscripts Cs-forum
5
CVSSv2
CVE-2006-3170
CS-Forum prior to 0.82 allows remote malicious users to obtain sensitive information via unspecified manipulations, possibly involving an empty collapse[] or readall parameter to index.php, which reveals the installation path in an error message.
Comscripts Cs-forum
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started