Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phpbb group vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2005-0871
calendar_scheduler.php in Topic Calendar 1.0.1 module for phpBB, when running on a Microsoft IIS server, allows remote malicious users to obtain sensitive information via invalid parameters, which reveal the path in an error message.
Phpbb Group Phpbb 1.0.1
4.3
CVSSv2
CVE-2005-0872
Cross-site scripting (XSS) vulnerability in calendar_scheduler.php in the Topic Calendar 1.0.1 module for phpBB allows remote malicious users to inject arbitrary web script or HTML via the start parameter.
Phpbb Group Phpbb 1.0.1
1 EDB exploit
4.3
CVSSv2
CVE-2006-1603
Cross-site scripting (XSS) vulnerability in profile.php in phpBB 2.0.19 allows remote malicious users to inject arbitrary web script or HTML via the cur_password parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party infor...
Phpbb Group Phpbb 2.0.19
7.5
CVSSv2
CVE-2006-2151
PHP remote file inclusion vulnerability in toplist.php in phpBB TopList 1.3.8 and previous versions, when register_globals is enabled, allows remote malicious users to include arbitrary files via the phpbb_root_path parameter.
Phpbb Group Phpbb Toplist
2 EDB exploits
7.5
CVSSv2
CVE-2005-2086
PHP remote file inclusion vulnerability in viewtopic.php in phpBB 2.0.15 and previous versions allows remote malicious users to execute arbitrary PHP code.
Phpbb Group Phpbb 2.0.15
2 EDB exploits
4.3
CVSSv2
CVE-2005-2161
Cross-site scripting (XSS) vulnerability in phpBB 2.0.16 allows remote malicious users to inject arbitrary web script or HTML via nested [url] tags.
Phpbb Group Phpbb 2.0.16
3.5
CVSSv2
CVE-2005-3310
Interpretation conflict in phpBB 2.0.17, with remote avatars and avatar uploading enabled, allows remote authenticated users to inject arbitrary web script or HTML via an HTML file with a GIF or JPEG file extension, which causes the HTML to be executed by a victim who views the f...
Phpbb Group Phpbb 2.0.17
7.5
CVSSv2
CVE-2006-4779
PHP remote file inclusion vulnerability in includes/functions_portal.php in Vitrax Premodded phpBB 1.0.6-R3 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Phpbb Group Vitrax Premodded Phpbb
1 EDB exploit
6.4
CVSSv2
CVE-2006-2150
PHP remote file inclusion vulnerability in top/list.php in phpBB TopList 1.3.8 and previous versions allows remote malicious users to include arbitrary files via the returnpath parameter.
Phpbb Group Phpbb Toplist 1.3.8
7.5
CVSSv2
CVE-2006-2152
PHP remote file inclusion vulnerability in admin/addentry.php in phpBB Advanced Guestbook 2.4.0 and previous versions, when register_globals is enabled, allows remote malicious users to include arbitrary files via the phpbb_root_path parameter.
Phpbb Group Phpbb Advanced Guestbook
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »