Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phpbb phpbb vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-2257
PHP remote file inclusion vulnerability in subscp.php in Fully Modded phpBB2 allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Fully Modded Phpbb Fully Modded Phpbb2
1 EDB exploit
7.5
CVSSv2
CVE-2007-2208
Multiple PHP remote file inclusion vulnerabilities in Extreme PHPBB2 3.0 Pre Final allow remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter to (1) functions.php or (2) functions_portal.php in includes/.
Extreme Phpbb Extreme Phpbb 3.0 Pre Final
7.5
CVSSv2
CVE-2007-1961
PHP remote file inclusion vulnerability in mutant_functions.php in the Mutant 0.9.2 portal for phpBB 2.2 allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Phpbb Mutant 0.9.2
1 EDB exploit
7.5
CVSSv2
CVE-2007-1818
PHP remote file inclusion vulnerability in MOD_forum_fields_parse.php in the Forum picture and META tags 1.7 module for phpBB allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Forum Picture And Meta Tags Forum Picture And Meta Tags 1.7
1 EDB exploit
10
CVSSv2
CVE-2007-1695
PHP remote file inclusion vulnerability in includes/usercp_register.php in phpBB 2.0.19 allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. NOTE: this issue has been disputed by third-party researchers, stating that the file che...
Phpbb Group Phpbb 2.0.19
10
CVSSv2
CVE-2006-7174
PHP remote file inclusion vulnerability in includes/functions.php in the Dimension module of phpBB allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. NOTE: this may be the same issue as CVE-2006-5235.
Phpbb Dimension
7.5
CVSSv2
CVE-2007-1555
SQL injection vulnerability in forum.php in the Minerva mod 2.0.21 build 238a and previous versions for phpBB allows remote malicious users to execute arbitrary SQL commands via the c parameter.
Minerva Minerva
1 EDB exploit
7.5
CVSSv2
CVE-2006-7168
PHP remote file inclusion vulnerability in includes/not_mem.php in the Add Name module for PHP allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Phpbb Phpbb -
1 EDB exploit
10
CVSSv2
CVE-2006-7148
PHP remote file inclusion vulnerability in includes/bb_usage_stats.php in maluinfo 206.2.38 for Brazilian PHPBB allows remote malicious users to execute arbitrary PHP code via the phpbb_root_path parameter. NOTE: this might be the same issues as CVE-2006-4893.
Phpbb Maluinfo 206.2.38
1 EDB exploit
6.8
CVSSv2
CVE-2006-7147
PHP remote file inclusion vulnerability in includes/functions_mod_user.php in phpBB Import Tools Mod 0.1.4 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Phpbb Import Tools 0.1.3
Phpbb Import Tools 0.1.4
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »