Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phorum phorum 5.0.14a vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2005-0843
CRLF injection vulnerability in search.php in Phorum 5.0.14a allows remote malicious users to perform HTTP Response Splitting attacks via the body parameter, which is included in the resulting Location header.
Phorum Phorum 5.0.14a
1 EDB exploit
6.8
CVSSv2
CVE-2005-3543
SQL injection vulnerability in search.php in Phorum 5.0.0alpha up to and including 5.0.20, when register_globals is enabled, allows remote malicious users to execute arbitrary SQL commands via the forum_ids parameter.
Phorum Phorum 5.0.13
Phorum Phorum 5.0.13a
Phorum Phorum 5.0.19
Phorum Phorum 5.0.2 Alpha
Phorum Phorum 5.0.7 Beta
Phorum Phorum 5.0.7a Beta
Phorum Phorum 5.0.8 Rc
Phorum Phorum 5.0.1 Alpha
Phorum Phorum 5.0.10
Phorum Phorum 5.0.15
Phorum Phorum 5.0.16
Phorum Phorum 5.0.4 Beta
Phorum Phorum 5.0.4a Beta
Phorum Phorum 5.0.11
Phorum Phorum 5.0.12
Phorum Phorum 5.0.17
Phorum Phorum 5.0.18
Phorum Phorum 5.0.5 Beta
Phorum Phorum 5.0.6 Beta
Phorum Phorum 5.0.0 Alpha
Phorum Phorum 5.0.14
Phorum Phorum 5.0.14a
6.8
CVSSv2
CVE-2008-1486
SQL injection vulnerability in Phorum prior to 5.2.6, when mysql_use_ft is disabled, allows remote malicious users to execute arbitrary SQL commands via the non-fulltext search.
Phorum Phorum 5.0.15
Phorum Phorum 5.0.1 Alpha
Phorum Phorum 5.2.2
Phorum Phorum 5.0.13a
Phorum Phorum 5.0.15a
Phorum Phorum 5.0.2 Alpha
Phorum Phorum 5.0.5 Beta
Phorum Phorum 5.0.19
Phorum Phorum 5.1.13
Phorum Phorum 5.0.7a Beta
Phorum Phorum 5.0.17
Phorum Phorum 5.0.17a
Phorum Phorum 5.1.25
Phorum Phorum 5.0.18
Phorum Phorum 5.0.4a Beta
Phorum Phorum 5.1.18
Phorum Phorum 5.2.4
Phorum Phorum 5.2.3
Phorum Phorum 5.0.12
Phorum Phorum
Phorum Phorum 5.0.20
Phorum Phorum 5.1.20
4.3
CVSSv2
CVE-2005-2836
Multiple cross-site scripting (XSS) vulnerabilities in Phorum 5.0.17a and previous versions allow remote malicious users to inject arbitrary web script or HTML via (1) the username parameter to register.php or (2) a signature of a logged-in user in "My Control Center," ...
Phorum Phorum 3.1
Phorum Phorum 3.1.1
Phorum Phorum 3.1.1 Pre
Phorum Phorum 3.1.1 Rc2
Phorum Phorum 3.3.1
Phorum Phorum 3.3.1a
Phorum Phorum 3.3.2
Phorum Phorum 3.3.2a
Phorum Phorum 5.0.12
Phorum Phorum 5.0.14
Phorum Phorum 5.0.14a
Phorum Phorum 5.0.15
Phorum Phorum 3.2.3
Phorum Phorum 3.2.3a
Phorum Phorum 3.2.3b
Phorum Phorum 3.2.4
Phorum Phorum 3.4.4
Phorum Phorum 3.4.5
Phorum Phorum 3.4.6
Phorum Phorum 3.4.7
Phorum Phorum 5.0.9
Phorum Phorum 3.1.1a
5.5
CVSSv2
CVE-2006-3611
Directory traversal vulnerability in pm.php in Phorum 5 allows remote authenticated users to include and execute arbitrary local files via directory traversal sequences in the GLOBALS[template] parameter, as demonstrated by injecting PHP sequences into a log file, which is then i...
Phorum Phorum 3.2.2
Phorum Phorum
Phorum Phorum 5.0.15
Phorum Phorum 3.1.1 Pre
Phorum Phorum 5.0.1 Alpha
Phorum Phorum 3.4.6
Phorum Phorum 3.2.3
Phorum Phorum 5.0.13a
Phorum Phorum 5.0.15a
Phorum Phorum 3.2.7
Phorum Phorum 3.4.3
Phorum Phorum 5.0.2 Alpha
Phorum Phorum 5.0.5 Beta
Phorum Phorum 5.0.19
Phorum Phorum 5.1.13
Phorum Phorum 3.1.1
Phorum Phorum 3.2.8
Phorum Phorum 3.3.1a
Phorum Phorum 5.0.7a Beta
Phorum Phorum 3.4.4
Phorum Phorum 5.0.17
Phorum Phorum 5.0.17a
1 EDB exploit
4.3
CVSSv2
CVE-2009-0488
Cross-site scripting (XSS) vulnerability in Phorum prior to 5.2.10 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Phorum Phorum 3.2.2
Phorum Phorum 5.0.15
Phorum Phorum 3.1.1 Pre
Phorum Phorum 5.2.5
Phorum Phorum 5.0.1 Alpha
Phorum Phorum
Phorum Phorum 5.2.9
Phorum Phorum 3.4.6
Phorum Phorum 5.2.2
Phorum Phorum 3.2.3
Phorum Phorum 5.0.13a
Phorum Phorum 5.0.15a
Phorum Phorum 3.2.7
Phorum Phorum 3.4.3
Phorum Phorum 5.0.2 Alpha
Phorum Phorum 5.0.5 Beta
Phorum Phorum 5.0.19
Phorum Phorum 5.1.13
Phorum Phorum 3.1.1
Phorum Phorum 3.2.8
Phorum Phorum 3.3.1a
Phorum Phorum 5.0.7a Beta
6.8
CVSSv2
CVE-2011-3381
Cross-site request forgery (CSRF) vulnerability in Phorum prior to 5.2.16 allows remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Phorum Phorum 5.2.10
Phorum Phorum 3.2.2
Phorum Phorum 5.0.15
Phorum Phorum 3.1.1 Pre
Phorum Phorum 5.2.5
Phorum Phorum 5.0.1 Alpha
Phorum Phorum 5.2.9
Phorum Phorum 5.2.12
Phorum Phorum 3.4.6
Phorum Phorum 5.2.2
Phorum Phorum 3.2.3
Phorum Phorum 5.0.13a
Phorum Phorum 5.2.14
Phorum Phorum 5.0.15a
Phorum Phorum 3.2.7
Phorum Phorum 3.4.3
Phorum Phorum 5.0.2 Alpha
Phorum Phorum 5.0.5 Beta
Phorum Phorum 5.0.19
Phorum Phorum 5.1.13
Phorum Phorum 3.1.1
Phorum Phorum 3.2.8
4.3
CVSSv2
CVE-2011-3382
Cross-site scripting (XSS) vulnerability in Phorum prior to 5.2.16 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Phorum Phorum 5.2.10
Phorum Phorum 3.2.2
Phorum Phorum 5.0.15
Phorum Phorum 3.1.1 Pre
Phorum Phorum 5.2.5
Phorum Phorum 5.0.1 Alpha
Phorum Phorum 5.2.9
Phorum Phorum 5.2.12
Phorum Phorum 3.4.6
Phorum Phorum 5.2.2
Phorum Phorum 3.2.3
Phorum Phorum 5.0.13a
Phorum Phorum 5.2.14
Phorum Phorum 5.0.15a
Phorum Phorum 3.2.7
Phorum Phorum 3.4.3
Phorum Phorum 5.0.2 Alpha
Phorum Phorum 5.0.5 Beta
Phorum Phorum 5.0.19
Phorum Phorum 5.1.13
Phorum Phorum 3.1.1
Phorum Phorum 3.2.8
4.3
CVSSv2
CVE-2010-1629
Cross-site scripting (XSS) vulnerability in Phorum prior to 5.2.15 allows remote malicious users to inject arbitrary web script or HTML via an invalid email address.
Phorum Phorum 5.2.9
Phorum Phorum 5.2.10
Phorum Phorum 5.2.2
Phorum Phorum 5.1.25
Phorum Phorum 3.4.8
Phorum Phorum 3.4.5
Phorum Phorum 3.3.2b3
Phorum Phorum 3.4
Phorum Phorum 3.2.6
Phorum Phorum 3.2.5
Phorum Phorum 3.1.2
Phorum Phorum 3.1.1a
Phorum Phorum 5.1.14
Phorum Phorum 5.1.17
Phorum Phorum 5.0.4a Beta
Phorum Phorum 5.0.5 Beta
Phorum Phorum 5.0.19
Phorum Phorum 5.0.17
Phorum Phorum 5.0.14
Phorum Phorum 5.0.12
Phorum Phorum 5.2.11
Phorum Phorum 5.2.4
4.3
CVSSv2
CVE-2011-3392
Cross-site scripting (XSS) vulnerability in control.php in the controlcenter in Phorum prior to 5.2.17 allows remote malicious users to inject arbitrary web script or HTML via the real_name parameter.
Phorum Phorum 5.2.10
Phorum Phorum 3.2.2
Phorum Phorum 5.0.15
Phorum Phorum 3.1.1 Pre
Phorum Phorum 5.2.5
Phorum Phorum 5.0.1 Alpha
Phorum Phorum
Phorum Phorum 5.2.9
Phorum Phorum 5.2.12
Phorum Phorum 3.4.6
Phorum Phorum 5.2.2
Phorum Phorum 5.2.15
Phorum Phorum 3.2.3
Phorum Phorum 5.0.13a
Phorum Phorum 5.2.14
Phorum Phorum 5.0.15a
Phorum Phorum 3.2.7
Phorum Phorum 3.4.3
Phorum Phorum 5.0.2 Alpha
Phorum Phorum 5.0.5 Beta
Phorum Phorum 5.0.19
Phorum Phorum 5.1.13
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »