Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
forum vulnerabilities and exploits
(subscribe to this query)
435
VMScore
CVE-2006-1110
Cross-site scripting (XSS) vulnerability in Aztek Forum 4.0 allows remote malicious users to inject arbitrary web script or HTML via the message body in a new message.
Aztek Forum Aztek Forum 4.0
1 EDB exploit
755
VMScore
CVE-2006-1111
Aztek Forum 4.0 allows remote malicious users to obtain sensitive information via a "*/*" in the msg parameter to index.php, which reveals usernames and passwords in a MySQL error message, possibly due to a forced SQL error or SQL injection.
Aztek Forum Aztek Forum 4.0
1 EDB exploit
505
VMScore
CVE-2006-1112
Aztek Forum 4.0 allows remote malicious users to obtain sensitive information via a long login value in a register form, which displays the installation path in a MySQL error message.
Aztek Forum Aztek Forum 4.0
1 EDB exploit
505
VMScore
CVE-2006-2947
Dmx Forum 2.1a allows remote malicious users to obtain username and password information via a direct request to pops/edit.php with a modified membre parameter.
Dmx Forum Dmx Forum 2.1a
1 EDB exploit
755
VMScore
CVE-2006-6794
SQL injection vulnerability in default.asp in Efkan Forum 1.0 allows remote malicious users to execute arbitrary SQL commands via the grup parameter.
Efkan Forum Efkan Forum 1.0
1 EDB exploit
435
VMScore
CVE-2007-3212
Multiple cross-site scripting (XSS) vulnerabilities in links.php in Beehive Forum 0.7.1 allow remote malicious users to inject arbitrary web script or HTML via the (1) viewmode, (2) fid, and (3) sort_dir parameters, different vectors than CVE-2005-4460.
Beehive Forum Beehive Forum 0.7.1
1 EDB exploit
755
VMScore
CVE-2007-3234
SQL injection vulnerability in low.php in Fuzzylime Forum 1.0 allows remote malicious users to execute arbitrary SQL commands via the topic parameter.
Fuzzylime Forum Fuzzylime Forum 1.0
1 EDB exploit
435
VMScore
CVE-2007-3235
Cross-site scripting (XSS) vulnerability in low.php in Fuzzylime Forum 1.0 allows remote malicious users to inject arbitrary web script or HTML via the topic parameter. NOTE: this might be resultant from SQL injection.
Fuzzylime Forum Fuzzylime Forum 1.0
1 EDB exploit
755
VMScore
CVE-2007-0589
SQL injection vulnerability in Forum Livre 1.0 allows remote malicious users to execute arbitrary SQL commands via the user parameter to info_user.asp.
Forum Livre Forum Livre 1.0
1 EDB exploit
585
VMScore
CVE-2007-0590
Cross-site scripting (XSS) vulnerability in busca2.asp in Forum Livre 1.0 remote malicious users to inject arbitrary web script or HTML via the palavra parameter.
Forum Livre Forum Livre 1.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »