Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php forum vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-7088
Multiple SQL injection vulnerabilities in Simple PHP Forum prior to 0.4 allow remote malicious users to execute arbitrary SQL commands via the username parameter to (1) logon_user.php and (2) update_profile.php.
Simple Php Forum Simple Php Forum 0.2
Simple Php Forum Simple Php Forum 0.3
Simple Php Forum Simple Php Forum 0.1
5
CVSSv2
CVE-2005-0831
PHP-Post allows remote malicious users to spoof the names of other users by registering with a username containing hex-encoded characters.
Php-post Php-post Web Forum 0.1
Php-post Php-post Web Forum 0.2
Php-post Php-post Web Forum 0.21
Php-post Php-post Web Forum 0.22
Php-post Php-post Web Forum 0.3
Php-post Php-post Web Forum 0.32
4.3
CVSSv2
CVE-2005-0832
Cross-site scripting (XSS) vulnerability in PHP-Post prior to 0.33 allows remote malicious users to inject arbitrary web script or HTML via unknown vectors.
Php-post Php-post Web Forum 0.21
Php-post Php-post Web Forum 0.32
Php-post Php-post Web Forum 0.2
Php-post Php-post Web Forum 0.3
Php-post Php-post Web Forum 0.22
Php-post Php-post Web Forum 0.1
2.6
CVSSv2
CVE-2007-5564
Multiple cross-site scripting (XSS) vulnerabilities in NSSboard (formerly Simple PHP Forum) 6.1 allow remote malicious users to inject arbitrary web script or HTML via (1) HTML tags when BBcode is disabled; or the (2) user, (3) email, or (4) Real Name fields in a profile.
Simple Php Forum Simple Php Forum 0.6.1
6.8
CVSSv2
CVE-2007-2182
Unrestricted file upload vulnerability in forum_write.php in Maran PHP Forum allows remote malicious users to upload and execute arbitrary PHP files via a trailing %00 in a filename in the page parameter.
Maran Php Forum
1 EDB exploit
NA
CVE-2023-41538
phpjabbers PHP Forum Script 3.0 is vulnerable to Cross Site Scripting (XSS) via the keyword parameter.
Phpjabbers Php Forum Script 3.0
1 Github repository
NA
CVE-2023-3539
A vulnerability, which was classified as problematic, has been found in SimplePHPscripts Simple Forum PHP 2.7. This issue affects some unknown processing of the file /preview.php of the component URL Parameter Handler. The manipulation leads to cross site scripting. The attack ma...
Simplephpscripts Simple Forum Php 2.7
4.3
CVSSv2
CVE-2009-3202
Cross-site scripting (XSS) vulnerability in search.php in ULoKI PHP Forum 2.1 allows remote malicious users to inject arbitrary web script or HTML via the term parameter.
Uloki Uloki Php Forum 2.1
1 EDB exploit
6.8
CVSSv2
CVE-2008-2227
Multiple directory traversal vulnerabilities in PHP-Fusion Forum Rank System 6 allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the settings[locale] parameter to (1) forum.php and (2) profile.php in infusions/rank_system/. NOTE: the ...
Php-fusion Forum Rank System 6
1 EDB exploit
4.3
CVSSv2
CVE-2009-4677
Cross-site scripting (XSS) vulnerability in search.php in phpFK PHP Forum ohne 7.0.4 allows remote malicious users to inject arbitrary web script or HTML via the search parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third part...
Frank-karau Phpfk Php Forum 7.0.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977
IMAP
local users
CVE-2024-32038
CVE-2023-49963
CVE-2023-22869
CVE-2024-31497
local
CVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »