Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
forum vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2007-6667
SQL injection vulnerability in faq.php in MyPHP Forum 3.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter. NOTE: the member.php vector is already covered by CVE-2005-0413.
Myphp Myphp Forum
Myphp Myphp Forum 2.0
Myphp Myphp Forum 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2002-2200
Benjamin Lefevre Dobermann FORUM 0.5 and previous versions allows remote malicious users to remotely include and execute malicious PHP files via the "subpath" variablein (1) entete.php, (2) enteteacceuil.php, (3) index.php, or (4) newtopic.php.
Benjamin Lefevre Dobermann Forum 0.2
Benjamin Lefevre Dobermann Forum 0.4
Benjamin Lefevre Dobermann Forum 0.1
Benjamin Lefevre Dobermann Forum 0.3
Benjamin Lefevre Dobermann Forum 0.5
4 EDB exploits
4.3
CVSSv2
CVE-2008-3029
Cross-site scripting (XSS) vulnerability in the WEC Discussion Forum (wec_discussion) extension 1.6.2 and previous versions for TYPO3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Typo3 Wec Discussion Forum 1.6.0
Typo3 Wec Discussion Forum 1.6.1
Typo3 Wec Discussion Forum 1.6
Typo3 Wec Discussion Forum
6.8
CVSSv2
CVE-2008-1316
SQL injection vulnerability in qtf_ind_search_ov.php in QT-cute QuickTalk Forum 1.6 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Qt-cute Quicktalk Forum 1.5.0.3
Qt-cute Quicktalk Forum 1.4
Qt-cute Quicktalk Forum
Qt-cute Quicktalk Forum 1.3
1 EDB exploit
4.3
CVSSv2
CVE-2003-0375
Cross-site scripting (XSS) vulnerability in member.php of XMBforum XMB 1.8.x (aka Partagium) allows remote malicious users to insert arbitrary HTML and web script via the "member" parameter.
Xmb Forum Xmb 1.6
Xmb Forum Xmb 1.8
Xmb Forum Xmb 1.11
2 EDB exploits
7.5
CVSSv2
CVE-2006-5105
Multiple PHP remote file inclusion vulnerabilities in SyntaxCMS 1.1.1 up to and including 1.3 allow remote malicious users to execute arbitrary PHP code via a URL in (1) the init_path parameter to admin/testing/tests/0030_init_syntax.php, or (2) an unspecified parameter to admin/...
Forum One Syntaxcms 1.1.1
Forum One Syntaxcms 1.2.1
Forum One Syntaxcms 1.3
7.5
CVSSv2
CVE-2004-0323
Multiple SQL injection vulnerabilities in XMB 1.8 Final SP2 allow remote malicious users to inject arbitrary SQL and gain privileges via the (1) ppp parameter in viewthread.php, (2) desc parameter in misc.php, (3) tpp parameter in forumdisplay.php, (4) ascdesc parameter in forumd...
Xmb Forum Xmb 1.8 Sp1
Xmb Forum Xmb 1.8 Sp2
Xmb Forum Xmb 1.8
1 EDB exploit
4.3
CVSSv2
CVE-2004-0322
Multiple cross-site scripting (XSS) vulnerabilities in XMB 1.8 Final SP2 allow remote malicious users to execute arbitrary script as other users via the (1) member parameter in member.php, (2) uid parameter in u2uadmin.php, (3) user parameter in editprofile.php, (4) an onmouseove...
Xmb Forum Xmb 1.8 Sp1
Xmb Forum Xmb 1.8 Sp2
Xmb Forum Xmb 1.8
3 EDB exploits
4.3
CVSSv2
CVE-2012-0900
Multiple cross-site scripting (XSS) vulnerabilities in Beehive Forum 1.0.1 allow remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to (1) forum/register.php or (2) forum/logon.php.
Beehive Forum Beehive Forum 1.0.1
1 EDB exploit
7.5
CVSSv2
CVE-2006-6794
SQL injection vulnerability in default.asp in Efkan Forum 1.0 allows remote malicious users to execute arbitrary SQL commands via the grup parameter.
Efkan Forum Efkan Forum 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »