Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
forum vulnerabilities and exploits
(subscribe to this query)
435
VMScore
CVE-2015-2198
Multiple cross-site scripting (XSS) vulnerabilities in edit_prefs.php in Beehive Forum 1.4.4 allow remote malicious users to inject arbitrary web script or HTML via the (1) homepage_url, (2) pic_url, or (3) avatar_url parameter, which are not properly handled in an error message.
Beehive Forum Beehive Forum 1.4.4
1 EDB exploit
760
VMScore
CVE-2006-4584
Tr Forum 2.0 allows remote malicious users to bypass authentication and add an administrative account via the login and password parameters to admin/insert_admin.php.
Tr Forum Tr Forum 2.0
2 EDB exploits
505
VMScore
CVE-2006-0877
Cross-site scripting vulnerability in Easy Forum 2.5 allows remote malicious users to inject arbitrary web script or HTML via the image variable.
Easy Forum Easy Forum 2.5
1 EDB exploit
755
VMScore
CVE-2005-3916
SQL injection vulnerability in memberlist.php in WSN Forum 1.21 allows remote malicious users to execute arbitrary SQL commands via the id parameter in a profile action.
Wsn Forum Wsn Forum 1.21
1 EDB exploit
755
VMScore
CVE-2007-0598
SQL injection vulnerability in forum/load.php in Aztek Forum 4.00 allows remote malicious users to execute arbitrary SQL commands via the fid cookie to forum.php.
Aztek Forum Aztek Forum 4.0
1 EDB exploit
755
VMScore
CVE-2007-0589
SQL injection vulnerability in Forum Livre 1.0 allows remote malicious users to execute arbitrary SQL commands via the user parameter to info_user.asp.
Forum Livre Forum Livre 1.0
1 EDB exploit
585
VMScore
CVE-2007-0590
Cross-site scripting (XSS) vulnerability in busca2.asp in Forum Livre 1.0 remote malicious users to inject arbitrary web script or HTML via the palavra parameter.
Forum Livre Forum Livre 1.0
1 EDB exploit
445
VMScore
CVE-2007-0597
Aztek Forum 4.00 allows remote malicious users to obtain sensitive information via a direct request to forum.php with the fid=XD query string, which reveals the path in an error message.
Aztek Forum Aztek Forum 4.0
668
VMScore
CVE-2007-0599
Variable overwrite vulnerability in common/config.php in Aztek Forum 4.00 allows remote malicious users to overwrite arbitrary program variables and conduct other unauthorized activities, such as copying arbitrary files using index/common_actions.php, via vectors associated with ...
Aztek Forum Aztek Forum 4.0
383
VMScore
CVE-2006-5504
Cross-site scripting (XSS) vulnerability in index.php in Simple Machines Forum (SMF) allows remote malicious users to inject arbitrary web script or HTML via a base64 encoded params value in the action parameter.
Simple Machines Simple Machines Forum 1.1 Rc3
Simple Machines Simple Machines Forum 1.0.6
Simple Machines Simple Machines Forum 1.0.7
Simple Machines Simple Machines Forum 1.0.5
Simple Machines Simple Machines Forum 1.1 Rc1
Simple Machines Simple Machines Forum 1.1 Rc2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »