Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phorum phorum 3.3.2a vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2002-0764
Phorum 3.3.2a allows remote malicious users to execute arbitrary commands via an HTTP request to (1) plugin.php, (2) admin.php, or (3) del.php that modifies the PHORUM[settings_dir] variable to point to a directory that contains a PHP file with the commands.
Phorum Phorum 3.3.2a
1 EDB exploit
383
VMScore
CVE-2002-2340
Cross-site scripting (XSS) vulnerability in read.php in Phorum 3.3.2a allows remote malicious users to inject arbitrary web script or HTML via (1) the t parameter or (2) the body of an email response.
Phorum Phorum 3.3.2a
445
VMScore
CVE-2004-1822
Multiple cross-site scripting (XSS) vulnerabilities in Phorum 3.1 up to and including 5.0.3 beta allow remote malicious users to inject arbitrary web script or HTML via the (1) HTTP_REFERER parameter to login.php, (2) HTTP_REFERER parameter to register.php, or (3) target paramete...
Phorum Phorum 3.1.1a
Phorum Phorum 3.1.2
Phorum Phorum 3.2.5
Phorum Phorum 3.2.6
Phorum Phorum 3.2.7
Phorum Phorum 3.4
Phorum Phorum 3.4.1
Phorum Phorum 3.1
Phorum Phorum 3.1.1
Phorum Phorum 3.2.3
Phorum Phorum 3.2.3a
Phorum Phorum 3.3.1a
Phorum Phorum 3.3.2
Phorum Phorum 3.4.4
Phorum Phorum 3.4.5
Phorum Phorum 3.2
Phorum Phorum 3.2.2
Phorum Phorum 3.2.8
Phorum Phorum 3.3.1
Phorum Phorum 3.4.2
Phorum Phorum 3.4.3
Phorum Phorum 3.1.1 Pre
3 EDB exploits
383
VMScore
CVE-2005-2836
Multiple cross-site scripting (XSS) vulnerabilities in Phorum 5.0.17a and previous versions allow remote malicious users to inject arbitrary web script or HTML via (1) the username parameter to register.php or (2) a signature of a logged-in user in "My Control Center," ...
Phorum Phorum 3.1
Phorum Phorum 3.1.1
Phorum Phorum 3.1.1 Pre
Phorum Phorum 3.1.1 Rc2
Phorum Phorum 3.3.1
Phorum Phorum 3.3.1a
Phorum Phorum 3.3.2
Phorum Phorum 3.3.2a
Phorum Phorum 5.0.12
Phorum Phorum 5.0.14
Phorum Phorum 5.0.14a
Phorum Phorum 5.0.15
Phorum Phorum 3.2.3
Phorum Phorum 3.2.3a
Phorum Phorum 3.2.3b
Phorum Phorum 3.2.4
Phorum Phorum 3.4.4
Phorum Phorum 3.4.5
Phorum Phorum 3.4.6
Phorum Phorum 3.4.7
Phorum Phorum 5.0.9
Phorum Phorum 3.1.1a
755
VMScore
CVE-2006-3053
PHP remote file inclusion vulnerability in common.php in PHORUM 5.1.13 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the PHORUM[http_path] parameter. NOTE: this issue has been disputed by the vendor, who states "common.php is ...
Phorum Phorum 3.2.2
Phorum Phorum 3.1.1 Pre
Phorum Phorum 3.4.6
Phorum Phorum 3.2.3
Phorum Phorum 5.0.15a
Phorum Phorum 3.2.7
Phorum Phorum 3.4.3
Phorum Phorum 3.1.1
Phorum Phorum 3.2.8
Phorum Phorum 3.3.1a
Phorum Phorum 3.4.4
Phorum Phorum 5.0.17a
Phorum Phorum 3.3.1
Phorum Phorum 3.4
Phorum Phorum 3.3.2
Phorum Phorum 3.1.1 Rc2
Phorum Phorum 5.0.18
Phorum Phorum 3.1.1a
Phorum Phorum 3.4.5
Phorum Phorum 5.0.12
Phorum Phorum 3.4.8a
Phorum Phorum 3.2.5
1 EDB exploit
555
VMScore
CVE-2006-3611
Directory traversal vulnerability in pm.php in Phorum 5 allows remote authenticated users to include and execute arbitrary local files via directory traversal sequences in the GLOBALS[template] parameter, as demonstrated by injecting PHP sequences into a log file, which is then i...
Phorum Phorum 3.2.2
Phorum Phorum
Phorum Phorum 5.0.15
Phorum Phorum 3.1.1 Pre
Phorum Phorum 5.0.1 Alpha
Phorum Phorum 3.4.6
Phorum Phorum 3.2.3
Phorum Phorum 5.0.13a
Phorum Phorum 5.0.15a
Phorum Phorum 3.2.7
Phorum Phorum 3.4.3
Phorum Phorum 5.0.2 Alpha
Phorum Phorum 5.0.5 Beta
Phorum Phorum 5.0.19
Phorum Phorum 5.1.13
Phorum Phorum 3.1.1
Phorum Phorum 3.2.8
Phorum Phorum 3.3.1a
Phorum Phorum 5.0.7a Beta
Phorum Phorum 3.4.4
Phorum Phorum 5.0.17
Phorum Phorum 5.0.17a
1 EDB exploit
383
VMScore
CVE-2009-0488
Cross-site scripting (XSS) vulnerability in Phorum prior to 5.2.10 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Phorum Phorum 3.2.2
Phorum Phorum 5.0.15
Phorum Phorum 3.1.1 Pre
Phorum Phorum 5.2.5
Phorum Phorum 5.0.1 Alpha
Phorum Phorum
Phorum Phorum 5.2.9
Phorum Phorum 3.4.6
Phorum Phorum 5.2.2
Phorum Phorum 3.2.3
Phorum Phorum 5.0.13a
Phorum Phorum 5.0.15a
Phorum Phorum 3.2.7
Phorum Phorum 3.4.3
Phorum Phorum 5.0.2 Alpha
Phorum Phorum 5.0.5 Beta
Phorum Phorum 5.0.19
Phorum Phorum 5.1.13
Phorum Phorum 3.1.1
Phorum Phorum 3.2.8
Phorum Phorum 3.3.1a
Phorum Phorum 5.0.7a Beta
605
VMScore
CVE-2011-3381
Cross-site request forgery (CSRF) vulnerability in Phorum prior to 5.2.16 allows remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Phorum Phorum 5.2.10
Phorum Phorum 3.2.2
Phorum Phorum 5.0.15
Phorum Phorum 3.1.1 Pre
Phorum Phorum 5.2.5
Phorum Phorum 5.0.1 Alpha
Phorum Phorum 5.2.9
Phorum Phorum 5.2.12
Phorum Phorum 3.4.6
Phorum Phorum 5.2.2
Phorum Phorum 3.2.3
Phorum Phorum 5.0.13a
Phorum Phorum 5.2.14
Phorum Phorum 5.0.15a
Phorum Phorum 3.2.7
Phorum Phorum 3.4.3
Phorum Phorum 5.0.2 Alpha
Phorum Phorum 5.0.5 Beta
Phorum Phorum 5.0.19
Phorum Phorum 5.1.13
Phorum Phorum 3.1.1
Phorum Phorum 3.2.8
383
VMScore
CVE-2011-3382
Cross-site scripting (XSS) vulnerability in Phorum prior to 5.2.16 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Phorum Phorum 5.2.10
Phorum Phorum 3.2.2
Phorum Phorum 5.0.15
Phorum Phorum 3.1.1 Pre
Phorum Phorum 5.2.5
Phorum Phorum 5.0.1 Alpha
Phorum Phorum 5.2.9
Phorum Phorum 5.2.12
Phorum Phorum 3.4.6
Phorum Phorum 5.2.2
Phorum Phorum 3.2.3
Phorum Phorum 5.0.13a
Phorum Phorum 5.2.14
Phorum Phorum 5.0.15a
Phorum Phorum 3.2.7
Phorum Phorum 3.4.3
Phorum Phorum 5.0.2 Alpha
Phorum Phorum 5.0.5 Beta
Phorum Phorum 5.0.19
Phorum Phorum 5.1.13
Phorum Phorum 3.1.1
Phorum Phorum 3.2.8
383
VMScore
CVE-2010-1629
Cross-site scripting (XSS) vulnerability in Phorum prior to 5.2.15 allows remote malicious users to inject arbitrary web script or HTML via an invalid email address.
Phorum Phorum 5.2.9
Phorum Phorum 5.2.10
Phorum Phorum 5.2.2
Phorum Phorum 5.1.25
Phorum Phorum 3.4.8
Phorum Phorum 3.4.5
Phorum Phorum 3.3.2b3
Phorum Phorum 3.4
Phorum Phorum 3.2.6
Phorum Phorum 3.2.5
Phorum Phorum 3.1.2
Phorum Phorum 3.1.1a
Phorum Phorum 5.1.14
Phorum Phorum 5.1.17
Phorum Phorum 5.0.4a Beta
Phorum Phorum 5.0.5 Beta
Phorum Phorum 5.0.19
Phorum Phorum 5.0.17
Phorum Phorum 5.0.14
Phorum Phorum 5.0.12
Phorum Phorum 5.2.11
Phorum Phorum 5.2.4
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »