Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
forum vulnerabilities and exploits
(subscribe to this query)
5.1
CVSSv2
CVE-2008-6777
Multiple SQL injection vulnerabilities in MyPHP Forum 3.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter in a confirm action, the (2) user parameter in a newconfirm action, and (3) reqpwd action to member.php; and the...
Myphp Myphp Forum 1.0
Myphp Myphp Forum 2.0
Myphp Myphp Forum
1 EDB exploit
7.5
CVSSv2
CVE-2002-2200
Benjamin Lefevre Dobermann FORUM 0.5 and previous versions allows remote malicious users to remotely include and execute malicious PHP files via the "subpath" variablein (1) entete.php, (2) enteteacceuil.php, (3) index.php, or (4) newtopic.php.
Benjamin Lefevre Dobermann Forum 0.2
Benjamin Lefevre Dobermann Forum 0.4
Benjamin Lefevre Dobermann Forum 0.1
Benjamin Lefevre Dobermann Forum 0.3
Benjamin Lefevre Dobermann Forum 0.5
4 EDB exploits
4.3
CVSSv2
CVE-2008-3029
Cross-site scripting (XSS) vulnerability in the WEC Discussion Forum (wec_discussion) extension 1.6.2 and previous versions for TYPO3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Typo3 Wec Discussion Forum 1.6.0
Typo3 Wec Discussion Forum 1.6.1
Typo3 Wec Discussion Forum 1.6
Typo3 Wec Discussion Forum
6.8
CVSSv2
CVE-2008-1316
SQL injection vulnerability in qtf_ind_search_ov.php in QT-cute QuickTalk Forum 1.6 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Qt-cute Quicktalk Forum 1.5.0.3
Qt-cute Quicktalk Forum 1.4
Qt-cute Quicktalk Forum
Qt-cute Quicktalk Forum 1.3
1 EDB exploit
4.3
CVSSv2
CVE-2003-0375
Cross-site scripting (XSS) vulnerability in member.php of XMBforum XMB 1.8.x (aka Partagium) allows remote malicious users to insert arbitrary HTML and web script via the "member" parameter.
Xmb Forum Xmb 1.6
Xmb Forum Xmb 1.8
Xmb Forum Xmb 1.11
2 EDB exploits
7.5
CVSSv2
CVE-2004-0323
Multiple SQL injection vulnerabilities in XMB 1.8 Final SP2 allow remote malicious users to inject arbitrary SQL and gain privileges via the (1) ppp parameter in viewthread.php, (2) desc parameter in misc.php, (3) tpp parameter in forumdisplay.php, (4) ascdesc parameter in forumd...
Xmb Forum Xmb 1.8 Sp1
Xmb Forum Xmb 1.8 Sp2
Xmb Forum Xmb 1.8
1 EDB exploit
4.3
CVSSv2
CVE-2004-0322
Multiple cross-site scripting (XSS) vulnerabilities in XMB 1.8 Final SP2 allow remote malicious users to execute arbitrary script as other users via the (1) member parameter in member.php, (2) uid parameter in u2uadmin.php, (3) user parameter in editprofile.php, (4) an onmouseove...
Xmb Forum Xmb 1.8 Sp1
Xmb Forum Xmb 1.8 Sp2
Xmb Forum Xmb 1.8
3 EDB exploits
7.5
CVSSv2
CVE-2006-5105
Multiple PHP remote file inclusion vulnerabilities in SyntaxCMS 1.1.1 up to and including 1.3 allow remote malicious users to execute arbitrary PHP code via a URL in (1) the init_path parameter to admin/testing/tests/0030_init_syntax.php, or (2) an unspecified parameter to admin/...
Forum One Syntaxcms 1.1.1
Forum One Syntaxcms 1.2.1
Forum One Syntaxcms 1.3
6.8
CVSSv2
CVE-2006-6532
Multiple cross-site scripting (XSS) vulnerabilities in Vt-Forum Lite 1.3 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) StrMsg or (2) Topic_ID parameter to (a) vf_info.asp, (b) vf_newtopic.asp, (c) vf_settings.asp, and (d) vf...
Vt-forum Vt-forum Lite
7.5
CVSSv2
CVE-2007-3234
SQL injection vulnerability in low.php in Fuzzylime Forum 1.0 allows remote malicious users to execute arbitrary SQL commands via the topic parameter.
Fuzzylime Forum Fuzzylime Forum 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
client side
CVE-2023-31889
template injection
CVE-2024-4304
CVE-2006-4304
CVE-2024-33272
type confusion
CVE-2024-21345
CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »