Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php forum vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2006-7088
Multiple SQL injection vulnerabilities in Simple PHP Forum prior to 0.4 allow remote malicious users to execute arbitrary SQL commands via the username parameter to (1) logon_user.php and (2) update_profile.php.
Simple Php Forum Simple Php Forum 0.2
Simple Php Forum Simple Php Forum 0.3
Simple Php Forum Simple Php Forum 0.1
445
VMScore
CVE-2005-0831
PHP-Post allows remote malicious users to spoof the names of other users by registering with a username containing hex-encoded characters.
Php-post Php-post Web Forum 0.1
Php-post Php-post Web Forum 0.2
Php-post Php-post Web Forum 0.21
Php-post Php-post Web Forum 0.22
Php-post Php-post Web Forum 0.3
Php-post Php-post Web Forum 0.32
383
VMScore
CVE-2005-0832
Cross-site scripting (XSS) vulnerability in PHP-Post prior to 0.33 allows remote malicious users to inject arbitrary web script or HTML via unknown vectors.
Php-post Php-post Web Forum 0.21
Php-post Php-post Web Forum 0.32
Php-post Php-post Web Forum 0.2
Php-post Php-post Web Forum 0.3
Php-post Php-post Web Forum 0.22
Php-post Php-post Web Forum 0.1
231
VMScore
CVE-2007-5564
Multiple cross-site scripting (XSS) vulnerabilities in NSSboard (formerly Simple PHP Forum) 6.1 allow remote malicious users to inject arbitrary web script or HTML via (1) HTML tags when BBcode is disabled; or the (2) user, (3) email, or (4) Real Name fields in a profile.
Simple Php Forum Simple Php Forum 0.6.1
685
VMScore
CVE-2007-2182
Unrestricted file upload vulnerability in forum_write.php in Maran PHP Forum allows remote malicious users to upload and execute arbitrary PHP files via a trailing %00 in a filename in the page parameter.
Maran Php Forum
1 EDB exploit
NA
CVE-2023-41538
phpjabbers PHP Forum Script 3.0 is vulnerable to Cross Site Scripting (XSS) via the keyword parameter.
Phpjabbers Php Forum Script 3.0
1 Github repository
435
VMScore
CVE-2009-3202
Cross-site scripting (XSS) vulnerability in search.php in ULoKI PHP Forum 2.1 allows remote malicious users to inject arbitrary web script or HTML via the term parameter.
Uloki Uloki Php Forum 2.1
1 EDB exploit
NA
CVE-2023-3539
A vulnerability, which was classified as problematic, has been found in SimplePHPscripts Simple Forum PHP 2.7. This issue affects some unknown processing of the file /preview.php of the component URL Parameter Handler. The manipulation leads to cross site scripting. The attack ma...
Simplephpscripts Simple Forum Php 2.7
685
VMScore
CVE-2008-2227
Multiple directory traversal vulnerabilities in PHP-Fusion Forum Rank System 6 allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the settings[locale] parameter to (1) forum.php and (2) profile.php in infusions/rank_system/. NOTE: the ...
Php-fusion Forum Rank System 6
1 EDB exploit
383
VMScore
CVE-2009-4677
Cross-site scripting (XSS) vulnerability in search.php in phpFK PHP Forum ohne 7.0.4 allows remote malicious users to inject arbitrary web script or HTML via the search parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third part...
Frank-karau Phpfk Php Forum 7.0.4
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »