Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dcscripts dcforum 6.21 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2002-0226
retrieve_password.pl in DCForum 6.x and 2000 generates predictable new passwords based on a sessionID, which allows remote malicious users to request a new password on behalf of another user and use the sessionID to calculate the new password for that user.
Dcscripts Dcforum 2000
Dcscripts Dcforum 5.0
Dcscripts Dcforum 6.0
Dcscripts Dcforum 6.21
NA
CVE-2005-4311
Cross-site scripting (XSS) vulnerability in DCForum 6.25 and previous versions, and possibly DCForum+ 1.x, allows remote malicious users to inject arbitrary web script or HTML via (1) the page parameter in dcboard.php and (2) unspecified search parameters.
Dcscripts Dcforum\\+ 1.003
Dcscripts Dcforum\\+ 1.1
Dcscripts Dcforum 6.2
Dcscripts Dcforum 6.21
Dcscripts Dcforum 6.22
Dcscripts Dcforum\\+ 1.001
Dcscripts Dcforum\\+ 1.002
Dcscripts Dcforum 6.0
Dcscripts Dcforum 6.1
Dcscripts Dcforum\\+ 1.2
Dcscripts Dcforum 2000 1.1
Dcscripts Dcforum 6.23
Dcscripts Dcforum 6.25
Dcscripts Dcforum\\+ 1.0
Dcscripts Dcforum 2k 1.1
Dcscripts Dcforum 5.11
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started